In recent years, we have seen a significant amount of new guidance on third party risk management within financial institutions. FFIEC Cybersecurity Assessments Tool (CAT) encourages financial institutions to expand questioning around third party risk management practices and suggests more rigorous reviews oversight. Regulators also suggests that the FFIEC CAT can be leveraged against Third Parties, not just financial institutions. There has also been discussion that the FFIEC may release a version of CAT for Third Parties to complete.
The FFIEC coined the term "External Dependencies" in CAT guidance. This expands requirements beyond vendors, to include any third-party relationship, including customers. We will explore best practices for Vendor Management, Third Party Risk Management, and Customer Risk Management. This discussion will help improve your process.
Who Should Attend?
Information Security Officers, IT Managers, Risk Officers, Internal Auditors, CFOs, and Executives looking to understand the risk around Third Party Management.
If you are having issues with registering online, please contact CBAO's Education & Training Coordinator, Lianne Simeone, (614) 610-1877.