• Last edited on: 24 May 2022

CSP Security Best Practices

See the recommended best practices you can use to keep your account secure.


There are increased threats faced by all web-based applications and services, and Coupa wants to apprise you of security best practices to enhance the security of your Coupa Supplier Portal (CSP) account. The security of your CSP account is a priority for Coupa, and implementing these best practices will help to reduce risks to your organization. 

General Best Practices

Please review the following general security best practices. Coupa recommends that you implement the following to help reduce risks to your account:

  • Multi-Factor Authentication: Enforce multi-factor authentication (MFA) for suppliers via the CSP. Implementing MFA is critical in securing your environment. For more information, see Manage Two-Factor Authentication.
  • Training: Regular security training for your employees on organization controls that includes training on product management and phishing attack prevention. 
  • Account Verification: Periodically verify the account payable information has not changed. If multiple users can access CSP, it is good to verify that account details have not unexpectedly changed. If they have, consider resetting credentials for all users as a precaution. 

Coupa recommends you implement and follow these best practices, in addition to your internal security controls to increase the security of your CSP account. Additional details on these controls can be found on the CSP. Please contact Coupa Support if you would like further information regarding best practices.