Virtual Cyber & Technology Risk Management Forum

First page Table of contents Previous page 50 Next page Last page

Ongoing Vendor Management

1. Bank adopts Third Party Management Program

4. IT Risk Assessment

5. Perform Due Diligence

Bank identifies current vendors and performs scheduled reviews.

3.Collect Data and Documents

6. Review Contract

2. Verify Vendor Risk Level • Level 1 • Level 2 • Level 3

7. Report Upstream

© 2020 SBS CyberSecurity, LLC www.sbscyber.com

28

Made with FlippingBook Publishing Software