New & Notable
Business partner and vendor security issues News
June 14, 2011
Citigroup hackers used a common website vulnerability to bypass security controls and reap confidential banking data.
May 21, 2010
Gregory Garcia will head the bank's cybersecurity and identity management partnerships.
November 10, 2009
Shared Assessments program unveils updated tools for assessing security of service providers, including cloud providers
October 05, 2009
Banks often overlook non-IT vendors in their vendor management program, putting their organization and customers' data at risk, experts say
Business partner and vendor security issues Get Started
Bring yourself up to speed with our introductory content
In compliance, the Shared Assessments Program provides organizations with a way to obtain a detailed report about a service provider's controls (people, process and procedures) and a procedure for verifying that the information in the report is ... Continue Reading
Financial institutions face numerous regulatory requirements for managing vendor risk. Learn what financial firms need to include in their vendor contracts in order to conform with regulatory guidance and industry best practices for vendor risk ... Continue Reading
Manage Business partner and vendor security issues
Learn to apply best practices and optimize your operations.
In this video get tips from expert Eric Holmquist on how to handle vendors to optimize security and minimize risk. Topics include risk assessment, due diligence best practices, common mistakes financial firms make in their vendor management programs... Continue Reading
As part of the vendor risk management process, regulators expect information security officers will document vendor relationships and have proper vendor documentation. Continue Reading
From federal guidance and industry standards to state laws, financial-services firms are subject to a variety of requirements for managing vendor information security risks by contract. Andrew M. Baer explains how the regulatory guidance is ... Continue Reading
Problem Solve Business partner and vendor security issues Issues
We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.
A vendor breach can be extremely costly to a financial institution. Financial firms must include data breach protections in their vendor contracts, including data breach notification and reporting. Continue Reading
Federal regulations, state laws and industry standards all stress the need for financial institutions to audit and monitor third-party security as part of their vendor risk assessment. Consequently, third-party contracts must include vendor auditing... Continue Reading
As financial-services firms turn to Software as a Service (SaaS) offerings to save money and increase efficiency, they need to make sure their SaaS providers implement strong data security. Someone providing SaaS is also supposed to be providing ... Continue Reading