Why has TPN now included Software Applications?

With the accelerated move to cloud workflows during the pandemic, TPN re-published the MPA Best Practices v5.1 in October 2022 to include application and cloud security issues. Given the shift away from centralized onsite work, a detailed understanding of the full on-prem and cloud technology stack is necessary for purchasers to gain a serious understanding of security risks and issue. The TPN program and TPN+ profiles now request that Service Providers report security status for services, locations and owned and/or licensed applications. If a Service Provider lists a 3rd party licensed application that has been through a TPN Gold assessment, then that Service Provider will be able to see the TPN Gold (or Blue if self-reported) Shield in their TPN+ profile and the TPN+ Application Registry.