Regulatory Pressure on Third Party Management
In recent years, we have seen a significant amount of new guidance on third party risk management within financial institutions.
FFIEC Cybersecurity Assessments Tool (CAT) encourages financial institutions to expand questioning around third party risk management practices and suggests more rigorous reviews oversight.
Regulators also suggests that the FFIEC CAT can be leveraged against Third Parties, not just financial institutions. There has also been discussion that the FFIEC may release a version of CAT for Third Parties to complete.
The FFIEC coined the term “External Dependencies” in CAT guidance. This expands requirements beyond vendors, to include any third-party relationship, including customers. We will explore best practices for Vendor Management, Third Party Risk Management, and Customer Risk Management. This discussion will help improve your process.
- Overview of industry breaches
- New regulatory expectations
- Risk Management practices for selecting new products/services
- Risk Management of existing relationships
- Integration of customers into management program
- Lessons learned from failed management programs
Information Security Officers, IT Managers, Risk Officers, Internal Auditors, CFOs, and Executives looking to understand the risk around Third Party Management.
Chad Knutson is a Senior Information Security Consultant and serves as President of the SBS CyberSecurity out of Madison, SD. SBS is a leader in information security consulting for the financial industry in the US. SBS works with more than 900 banks around the country on information security services such as the development of Information Security Programs, Policies, and Risk Assessments, along with performing IT Audits, Penetration Tests, Vulnerability Assessment and other security services. Chad is a Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA) and Certified in Risk and Information Security Controls (CRISC), and received his Bachelor of Science in Computer Information Systems and his Master of Science in Information Assurance with an emphasis in Banking and Finance Security from Dakota State University. Chad has been with SBS since 2004 and has consulted with many financial institutions during this time.
Institute of Certified Bankers: Visit http://www.icbmembers.org/login.aspx for instructions regarding self-reporting. Estimated credits: 2.5 CE Credits
- Live Webinar which includes 5 Day On-Demand - $265
- Six Month On-Demand – $295
- Live plus Six Month On-Demand – $365
- CD-ROM (Includes Six Month On-Demand) – $345
- Premier (Includes all options) – $395
- Additional Locations – $75
Online: Click here.
Phone: Call Total Training Solutions at (800) 831-0678
Register online up to day of event. Earlier registration allows time to check your computer for an optimal experience.