Contract Sent Logo

How to complete security documentation



How to complete security documentation - Contract Sent

Confusion confusion confusion

Security documentation can be an absolute minefield, hard to navigate, and even harder to interpret. As a software company, you’ll find that the majority of large companies will ask you to complete some sort of security documentation for the procurement process. It’s part of any sales cycle that is selling into large companies and it is quite often one of the slowest parts of the procurement process.

Why is it so slow? A lot of change has happened in the software industry in the last ten years and surprise surprise other functions of large enterprise businesses haven’t kept up with the rate of change. Software as a service is a new concept to a lot of people in these companies and as such completing security documentation can be a bit of a minefield. So with that, we’ve prepared a short guide on how to fill out security documentation when you’re looking to close deals.

How do I respond to questions that don’t apply to my product?

It’s very common for large enterprise companies to push to use their documentation for security information and legal agreements. Why? Because they have spent time de-risking their business they generally can negotiate due to the large opportunities that their company provides to vendors. The downside of this is that a number of them try to push security documentation on you that just isn’t appropriate for your product, it’s more for a product that you’ll build and give to them, not software as a service product.

So what do you do when you find questions that just don’t apply to you? The simple answer is to just say Not Applicable in the response. The slightly less simple answer is that this security questionnaire is more likely going to someone who doesn’t know what your product is nor how it will be rolled out. In this case, it’s very important to arm your sales team with the tools to navigate conversations to get the appropriate audience involved in the conversation early and to make that person aware that you are a software as a service rather than a stand-alone software product.

Contract Sent

A contract management system built for startups to manage, negotiate and report on their SaaS contracts.

Contract Sent is not a law firm, this post and subsequent pages on this website do not constitute or contain legal advice. To understand whether or not the ideas and guidance on the Contract Sent website is applicable to your business, you should consult with a licensed attorney. The use and accessing of any resources contained within the Contract Sent site do not create an attorney-client relationship between the user and Contract Sent.


follow us on linkedin

Startup Contract Management

Contract Tracking

Document Comparison

Contract Storage


Download an MRR Waterfall Template
contract template download
Download a SaaS Contract Template
contract sent nda template
Download an NDA Template