Outsourced Third Party Risk Management Webinar
When you outsource, you are placing your confidential customer information in someone else’s hands along with the availability and security of that information, but you still retain the responsibility for ensuring the integrity, confidentiality, availability and security of the information making this Program a crucial part of your overall Information and Cyber Security Program.
Webinar Description and Audience
Outsourced Third Party (Vendor) Risk Management is a top priority with the regulators. Therefore, ensuring your Program is not only going to be effective but also meet with their expectations needs to be a priority for financial institutions. When you outsource, you are placing your confidential customer information in someone else’s hands along with the availability and security of that information, but you still retain the responsibility for ensuring the integrity, confidentiality, availability and security of the information making this Program a crucial part of your overall Information and Cyber Security Program.
Demonstrating the importance of this Program, the OCC and the FRB both issued updated guidance relating to third party relationships in October and December of 2013, respectively while the FDIC reissued its Technology Outsourcing Informational Tools in April of 2014. Then on February 6, 2015, the FFIEC released an update to the Business Continuity Planning Handbook adding Appendix J: Strengthening the Resilience of Outsourced Technology Services. On November 14, 2019, a revised Business Continuity Planning handbook was released that addresses: Third Party Management, Third Party Capacity, Testing with Third-Party Technology Service Providers, and Cyber Resilience. The FFIEC Cybersecurity Assessment Tool (CAT) also includes declarative statements relating to Outsourced Third Party Risk Management practices. Susan Orr has assisted numerous institutions with developing their Outsourced Third Party Risk Management Program and will share her insights into developing an effective program in this webinar.
What You Will Learn
- FFIEC agencies expectations for your Program
- The latest guidance:
- November 2019 BCP Handbook
- Appendix D of the FFIEC Outsourced Technology Services Handbook
- FFIEC Supervision of Technology Service Providers, September 2012
- FDIC April 2014 Tools to Manage Technology Providers Informational Brochures
- OCC October 2013 Third Party Relationships
- FRB December 2013 Guidance on Managing Outsourcing Risk
- Classification and Risk Rating criteria
- Required Program elements and essentials
- Needs Assessment
- Due Diligence/Selection
- Risk Assessing
Who Should Attend?
Senior Management, Information Security Officers, Compliance Officers, Risk Managers, IT Managers, Operations Managers.
Continuing Education (CE) Credits
This webinar is recommended for 2.5 CE Credit Hours. Each attendee will receive a Certificate of Attendance for self-reporting of CE Credits.
Webinar Viewing Options
INCLUDES 7 DAYS OF ONDEMAND PLAYBACK! With this option, you will participate in the webinar (via the internet) as it is being presented. You will login to the webinar on your PC to view the PowerPoint presentation, and you have the option of using your PC speakers or a telephone for the audio. You can type and send your questions to the instructor. Many companies are now running their PC through an LCD projector allowing many employees to participate at the same time. And don’t worry if you miss the webinar, you can still view it for up to seven days after it takes place!
SIX MONTH ONDEMAND VIDEO:
With this option, you will receive an e-mail that contains a link to the PowerPoint slides (to download, print, and copy) as well as a link to the media player where you will view and hear the entire webinar just as it was delivered, featuring the full-color PowerPoint presentation with audio. You can pause, fast-forward and rewind as needed, which makes it an effective training tool. The weblink will be available to you (and anyone else in the company) for up to six months and can be accessed 24/7 as many times as you wish. Delivered via e-mail the day after the webinar takes place.
If you do not have internet access or want to make the webinar part of your training library, the CD-ROM Recording is a great option for viewing a webinar. You can pause, fast-forward and rewind as needed, which makes it an effective training tool. With this option, you will receive a download of the PowerPoint slides and a CD-ROM Recording (featuring PowerPoint presentation with audio) of the webinar via regular mail. Mailed 7 to 10 days after the webinar takes place.
Webinars can be scheduled and offered exclusively for your company. They can even be customized to best fit your needs. To find out more, please complete the in-house request form found in the Schedule and Registration Information section below.