SOC Report Selection & Evaluation Aids

Posted by Tom on April 16, 2011 · Leave a Comment

With the SAS 70 phasing out on 6/15, financial institutions have a dual challenge; determining the best report to request, and evaluating the report they are provided. To assist with …
Read the rest of the article

Filed under Resources · Tagged with SAS 70, SOC 1, SOC 2, SOC 3, SSAE 16, Vendor Management

Frequency of key terms in FFIEC Handbooks

Posted by Tom on September 27, 2010 · Leave a Comment

In preparation for an upcoming class on Audits & Examinations, I created an searchable index of all FFIEC IT Examination Handbooks. Out of curiosity, I ran frequency counts for some …
Read the rest of the article

Filed under Resources · Tagged with FFIEC

CAMELS ratings and regulatory reform

Posted by Tom on August 27, 2010 · 1 Comment

The ability of management to respond to changing circumstances, and to address the risks that may arise from changing business conditions, has become an area of increased examiner scrutiny in …
Read the rest of the article

Filed under Resources · Tagged with whitepapers

FFIEC Tier I and II Examination Procedures

Posted by Tom on July 21, 2010 · Leave a Comment

A complete listing of ALL FFIEC Tier I and Tier II examination procedures in one place, courtesy of the BITS Shared Assessments project. Very handy!

Filed under Resources · Tagged with Examination, FFIEC, Vendor Management

New Guidance and New Challenges in Remote Payment Systems

Posted by Tom on July 7, 2010 · Leave a Comment

This whitepaper talks about the recent FFIEC guidance on Retail Payment Systems.

Filed under Resources · Tagged with FFIEC, whitepapers

Webinar: 2010 Trends, a Mid-year Assessment

Posted by Tom on July 6, 2010 · Leave a Comment

Watch this educational webinar presented by the Compliance Guru and Attus.

Tom Hinkel (The Guru) is the Director of Compliance at Safe Systems, Inc.…
Read the rest of the article Safe Systems is the national leader

Filed under Resources · Tagged with webinars

Disaster Recovery Webinar: Training Your Employees

Posted by Tom on July 6, 2010 · Leave a Comment

During this presentation, we will suggest methods to build your employee training program to adhere with current regulatory guidance, as well as maximize its effectiveness.

Filed under Resources · Tagged with DR, webinars

Outsourcing – Rewards and Risks

Posted by Tom on June 29, 2010 · Leave a Comment

There are twelve booklets in the FFIEC IT Examination Handbook series, and ten of them make reference to the importance of managing third-party relationships. Today, the vast majority of financial …
Read the rest of the article

Filed under Resources · Tagged with whitepapers

Disaster Recovery & Strategic Planning: How alignment can reduce risk and cost

Posted by Tom on June 15, 2010 · Leave a Comment

If it’s been done correctly, your business continuity program has been developed to support your Banks’ strategic plan. The capabilities of your hardware and software have been carefully selected to …
Read the rest of the article

Filed under Resources · Tagged with DR, whitepapers

Vendor Management – BITS and Pieces

Posted by Tom on June 7, 2010 · Leave a Comment

The effective management of critical vendors is an essential risk control. The FFIEC mentions this several times in their Examination Handbooks, most recently in the “Information Security” Handbook from July, …
Read the rest of the article

Filed under Resources · Tagged with Vendor Management, whitepapers

Stay Informed

Categories

Useful Websites