outsourcing technology services
play

Outsourcing Technology Services Objectives Vendor Management - PowerPoint PPT Presentation

Dec 12, 2023 •286 likes •696 views

Vendor Management Outsourcing Technology Services Objectives Vendor Management Outsourcing Technology Services Board and Senior Management Responsibilities Risk Management Program Risk Assessment Service Provider Selection

  1. Vendor Management Outsourcing Technology Services

  2. Objectives Vendor Management – Outsourcing Technology Services  Board and Senior Management Responsibilities  Risk Management Program • Risk Assessment • Service Provider Selection • Contracts • Ongoing Monitoring  Business Continuity Planning and Testing  Other Available Resources FEDERAL DEPOSIT INSURANCE CORPORATION

  3. Board and Senior Management Responsibilities Vendor Management – Outsourcing Technology Services The Board can outsource a service, but cannot outsource the responsibility. Identify  Develop and implement risk- based policies and procedures Report Measure RISK to govern the outsourcing process Monitor Mitigate FEDERAL DEPOSIT INSURANCE CORPORATION

  4. Board and Senior Management Responsibilities Vendor Management – Outsourcing Technology Services Board Responsibilities  Develop and approve policies that establish an effective vendor management program framework  Select a service provider that best meets the needs of the bank  Negotiate a contract that protects the interests of the bank  Oversee management’s implementation of the program through regular board reporting FEDERAL DEPOSIT INSURANCE CORPORATION

  5. Board and Senior Management Responsibilities Vendor Management – Outsourcing Technology Services Board Reports  Audits  Financial Statements  Business Continuity  Higher-risk Service Plans and Testing Providers  Service Level  Regulatory IT Examination Agreements Reports  Information Security FEDERAL DEPOSIT INSURANCE CORPORATION

  6. Board and Senior Management Responsibilities Vendor Management – Outsourcing Technology Services Management Responsibilities  Evaluate prospective providers based on the type of services outsourced and how critical the function is to the bank  Ensure each outsourced relationship supports business requirements and strategic plans, and is appropriate for the size and complexity of the bank  Confirm the bank has sufficient expertise to oversee and manage the relationship  Implement ongoing monitoring programs that prioritize activities based on the degree of risk and criticality of the services FEDERAL DEPOSIT INSURANCE CORPORATION

  7. Risk Management Overview Vendor Management – Outsourcing Technology Services  Inform senior management and the board of the risks associated with outsourcing  Ensure that outsourcing arrangements are prudent and consistent with business objectives  Implement effective controls to address identified risks  Perform ongoing risk monitoring to identify and evaluate changes in risk from the initial assessment  Document procedures, roles, responsibilities, and reporting mechanisms FEDERAL DEPOSIT INSURANCE CORPORATION

  8. Risk Management Overview Vendor Management – Outsourcing Technology Services Risk Monitoring Assessment Vendor Management Contracts Selection FEDERAL DEPOSIT INSURANCE CORPORATION

  9. Risk Management Overview Vendor Management – Outsourcing Technology Services Risk Monitoring Assessment Vendor Management Contracts Selection FEDERAL DEPOSIT INSURANCE CORPORATION

  10. Risk Management Overview Vendor Management – Outsourcing Technology Services Risk Monitoring Assessment Vendor Management Contracts Selection FEDERAL DEPOSIT INSURANCE CORPORATION

  11. Risk Management Overview Vendor Management – Outsourcing Technology Services Risk Monitoring Assessment Vendor Management Contracts Selection FEDERAL DEPOSIT INSURANCE CORPORATION

  12. Risk Management Overview Vendor Management – Outsourcing Technology Services Risk Monitoring Assessment Vendor Management Contracts Selection FEDERAL DEPOSIT INSURANCE CORPORATION

  13. Risk Management Overview Vendor Management – Outsourcing Technology Services Risk Monitoring Assessment Vendor Management Contracts Selection FEDERAL DEPOSIT INSURANCE CORPORATION

  14. Risk Assessment Vendor Management – Outsourcing Technology Services Risks • Planning, implementation, scalability Strategic • Legal and regulatory requirements Compliance • Errors, delays, omissions, fraud, breaches Reputational • Errors, inaccurate assumptions Interest Rate • Service disruptions, settlement delays Liquidity Cyber • Disruption, malware FEDERAL DEPOSIT INSURANCE CORPORATION

  15. Risk Assessment Vendor Management – Outsourcing Technology Services • Criticality • Data sensitivity Outsourced Function • Transaction volume • Financial strength Quantifying • Industry experience Service Provider Risks • Location • Reliability • Security Technology • Scalability FEDERAL DEPOSIT INSURANCE CORPORATION

  16. Vendor Selection Vendor Management – Outsourcing Technology Services Risk Monitoring Assessment Vendor Management Contracts Selection FEDERAL DEPOSIT INSURANCE CORPORATION

  17. Vendor Selection Vendor Management – Outsourcing Technology Services Due Diligence: Key Considerations  Corporate history,  Reliance on and success in qualifications, references managing subcontractors  Financial condition  Legal and regulatory compliance  Service delivery capability  Insurance coverage  Technology and system  Site visits architecture  Internal control environment,  Disaster recovery/business security history, audit coverage continuity FEDERAL DEPOSIT INSURANCE CORPORATION

  18. Contracts Vendor Management – Outsourcing Technology Services Risk Monitoring Assessment Vendor Management Contracts Selection FEDERAL DEPOSIT INSURANCE CORPORATION

  19. Contracts Vendor Management – Outsourcing Technology Services Common Provisions Scope of Service Security and Confidentiality • Rights and Responsibilities • Responsibility and Controls • Description of Activities • Incident Response and • Timeframes for Implementation Notification Requirements • Appendix B to Part 364 (GLBA) • Assignment of Responsibilities FEDERAL DEPOSIT INSURANCE CORPORATION

  20. Contracts Vendor Management – Outsourcing Technology Services Common Provisions Internal Controls Audit • Records Maintenance • Types of Audits • System Monitoring • Financial • Notification Requirements • General Controls • Cybersecurity • Network Security Assessments • Electronic Funds Transfer • Disaster Recovery Tests • Frequency • Right to Receive • Right to Audit FEDERAL DEPOSIT INSURANCE CORPORATION

  21. Contracts Vendor Management – Outsourcing Technology Services Common Provisions Business Resumption/ Reports Contingency Plans • Frequency and Types • Backup and Records Protections • Performance • Equipment • Financials • Programs and Data Files • Compliance with regulatory • Maintenance and Testing guidance • Frequency • Availability of Test Results • Bank Participation FEDERAL DEPOSIT INSURANCE CORPORATION

  22. Contracts Vendor Management – Outsourcing Technology Services Common Provisions Regulatory Compliance Sub-contracting • Awareness • Adherence to Regulatory Guidance • Risk Management • Assessment • Responsibility • Consumer Compliance Performance Standards • Measurable • Minimum Service Level Requirements • Remedies • Service Level Agreements (SLAs) FEDERAL DEPOSIT INSURANCE CORPORATION

  23. Contracts Vendor Management – Outsourcing Technology Services Bank Service Company Act Notification  Banks should notify their primary Federal regulator of the outsourcing relationship within: • 30 days of entering into the contract, or • performance of the services ……..whichever occurs first FEDERAL DEPOSIT INSURANCE CORPORATION

  24. Contracts Vendor Management – Outsourcing Technology Services SLAs Confidentiality of Data • GLBA compliance, notifications, responsiveness Integrity and Availability • Error rates, up time, processing timeliness • Programming changes, system updates System Changes • Compliance, independent testing Security Standards • Backup, retention, protection, restoration, recovery Business Continuity • Responsiveness, availability, qualifications Help Desk Support FEDERAL DEPOSIT INSURANCE CORPORATION

  25. Monitoring Vendor Management – Outsourcing Technology Services Risk Monitoring Assessment Vendor Management Contracts Selection FEDERAL DEPOSIT INSURANCE CORPORATION

  26. Monitoring Vendor Management – Outsourcing Technology Services  Periodically reevaluate active service providers  Tailor ongoing monitoring using a risk-based approach considering: • Criticality of the services • Sensitivity of data • Degree of perceived risk  Implement more frequent and stringent ongoing monitoring for higher-risk service providers  Report results to the board FEDERAL DEPOSIT INSURANCE CORPORATION

  27. Monitoring Vendor Management – Outsourcing Technology Services  Audit reports • Performed by qualified and independent personnel • Type, scope, and frequency consistent with: o Size and complexity o Products and services o Level of risk • Review corrective actions FEDERAL DEPOSIT INSURANCE CORPORATION

  28. Monitoring Vendor Management – Outsourcing Technology Services  Financial Condition • Continuity of operations • Support for the contracted services • Investment in security controls • Product updates FEDERAL DEPOSIT INSURANCE CORPORATION

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Total Workforce Shared Services & Outsourcing Solution Integrated Enterprise Cloud Solutions

Total Workforce Shared Services & Outsourcing Solution Integrated Enterprise Cloud Solutions

Total Workforce Shared Services & Outsourcing Solution Integrated Enterprise Cloud Solutions Powered by NetAIMS@Cloud Presented by: Dr. Saw Lean Joo LJS Technology Sdn Bhd. Access Any Time Any Where.. In the World Introduction To

558 views • 33 slides
OUR SERVICES: INTERNATIONAL OUTSOURCING OF CUSTOMS CLEARANCE TRANSPORTATION FOREIGN ECONOMIC

OUR SERVICES: INTERNATIONAL OUTSOURCING OF CUSTOMS CLEARANCE TRANSPORTATION FOREIGN ECONOMIC

TCLG internat rnational ional logistics istics operat rator, , providin viding g all kinds s of transpor sport t and custo tom m registra istratio tion n service ices. . OUR SERVICES: INTERNATIONAL OUTSOURCING OF CUSTOMS

390 views • 9 slides
Outsourcing Overview Value Driven Engineering Value Driven Engineering Outsourcing is one

Outsourcing Overview Value Driven Engineering Value Driven Engineering Outsourcing is one

Outsourcing Overview Value Driven Engineering Value Driven Engineering Outsourcing is one available tool in Mustangs diversified toolkit, but not an all encompassing primary strategy Outsourcing will be used when it makes sense

439 views • 8 slides
Consulting Certification End to End Solution Outsourcing Consulting Certification End to End

Consulting Certification End to End Solution Outsourcing Consulting Certification End to End

Consulting Certification End to End Solution Outsourcing Consulting Certification End to End Solution Outsourcing We use creative services and products to deliver inventive solutions Created by experts in the area of IT, Network &

461 views • 43 slides
CMC outsourcing in small virtual biotech company 28.02.2018 www.targovax.com Subjects

CMC outsourcing in small virtual biotech company 28.02.2018 www.targovax.com Subjects

Arming the patients immune system to fight cancer CMC outsourcing in small virtual biotech company 28.02.2018 www.targovax.com Subjects Introduction to Targovax and technology platforms Outsourcing to CDMOs Selection of CDMO 2

543 views • 25 slides
Technology Overview Martin Lamprecht Special Projects Agenda Group technology vision and

Technology Overview Martin Lamprecht Special Projects Agenda Group technology vision and

Technology Overview Martin Lamprecht Special Projects Agenda Group technology vision and strategic objectives Equipment price trends, rationalisation of vendors Voice and data technology needs Shared services and outsourcing

390 views • 24 slides
CASE MANAGEMENT OUTSOURCING MH/ ID/ EI ASSUMPTIONS See detailed assumptions in separate

CASE MANAGEMENT OUTSOURCING MH/ ID/ EI ASSUMPTIONS See detailed assumptions in separate

CASE MANAGEMENT OUTSOURCING MH/ ID/ EI ASSUMPTIONS See detailed assumptions in separate document. Comparison of existing county structure vs. outsourcing of case management services Table of organization Preliminary 2012- 2013 budget County

102 views • 7 slides
Outsourcing of Essential Customer Services to Off Shore Based Suppliers The CPA Australia

Outsourcing of Essential Customer Services to Off Shore Based Suppliers The CPA Australia

Outsourcing of Essential Customer Services to Off Shore Based Suppliers The CPA Australia Experience Tony Gleeson Executive General Manager CIPSA / SCLAA Event Thursday 14 th April 2011 CPA Australia + 125 year old membership body for

326 views • 17 slides
Secure Outsourcing of Computation Ron Rothblum MIT Outsourcing Computation Motivation: allow a

Secure Outsourcing of Computation Ron Rothblum MIT Outsourcing Computation Motivation: allow a

Secure Outsourcing of Computation Ron Rothblum MIT Outsourcing Computation Motivation: allow a computationally weak client to outsource its computation to an untrusted server. = () Main security concerns: 1. Correctness:

377 views • 4 slides
COMPANY P RESENTATION Your Success is Our Success 1 . CONTENTS IT Outsourcing Services 2 .

COMPANY P RESENTATION Your Success is Our Success 1 . CONTENTS IT Outsourcing Services 2 .

COMPANY P RESENTATION Your Success is Our Success 1 . CONTENTS IT Outsourcing Services 2 . Governance mechanisms I . Introduction 1 . About the Codevery Company 2. Why CODEVERY 3. Partnerships II. Services 1. I T Development 2. Marketing 3.

253 views • 22 slides
Web Services and Services on the Web Paul Downey BT W3C Workshop on the Web of Services for

Web Services and Services on the Web Paul Downey BT W3C Workshop on the Web of Services for

Web Services and Services on the Web Paul Downey BT W3C Workshop on the Web of Services for Enterprise Computing 27-28th February 2007 80s telcoms ICT ` EoI mobile federation outsourcing open ubiquitous web deperimiterisation

607 views • 50 slides
1 Outsourcing Across the Globe Major cost benefits? Does 50-70% cost savings for developers n

1 Outsourcing Across the Globe Major cost benefits? Does 50-70% cost savings for developers n

Agenda Outsourcing and Globalization n Introduction in Software Development n The Outsourcing Phenomenon n Leading Offshore Projects Jacques Crocker n Managing Customers UW CSE Alumni 2003 n Offshore Development Notes jc@cs.washington.edu n Q

340 views • 5 slides
Outsourcing Pharma OUTSOURCING ON THAT SIDE OF THE PACIFIC. ABHAY DESHPANDE, CEO, JRF-GLOBAL

Outsourcing Pharma OUTSOURCING ON THAT SIDE OF THE PACIFIC. ABHAY DESHPANDE, CEO, JRF-GLOBAL

Outsourcing Pharma OUTSOURCING ON THAT SIDE OF THE PACIFIC. ABHAY DESHPANDE, CEO, JRF-GLOBAL PRESENTED AT OUTSOURCED PHARMA EVENT, SAN FRANCISCO, OCTOBER 29, 2018 JRF Global.Lead your LEAD with us! 1 Working Tariffs and Trade with

330 views • 32 slides
GAME OUTSOURCING SUMMIT AARON PULKKA GAME OUTSOURCING SUMMIT Putting it All Together - Building

GAME OUTSOURCING SUMMIT AARON PULKKA GAME OUTSOURCING SUMMIT Putting it All Together - Building

GAME OUTSOURCING SUMMIT AARON PULKKA GAME OUTSOURCING SUMMIT Putting it All Together - Building the Right Outsourcing Team Aaron Pulkka | Director of Production | Activision GAME OUTSOURCING SUMMIT AARON PULKKA Outsourcing Team Internal

854 views • 43 slides
Verifiable Cloud Outsourcing for Network Func9ons (+

Verifiable Cloud Outsourcing for Network Func9ons (+

Verifiable Cloud Outsourcing for Network Func9ons (+ Verifiable Resource Accoun9ng for Cloud Services) Vyas Sekar vNFO joint with Seyed Fayazbakhsh,

434 views • 28 slides
Preparing for year-end and 2020 payroll compliance December 5, 2019 Webinar starts at 12:30 p.m.

Preparing for year-end and 2020 payroll compliance December 5, 2019 Webinar starts at 12:30 p.m.

Presented by Preparing for year-end and 2020 payroll compliance December 5, 2019 Webinar starts at 12:30 p.m. CT Cindy McSwain Sonia Phillips Senior Vice President Payroll Senior Manager Outsourcing Services Outsourcing Services

1.06k views • 81 slides
Market Simulation - Fall 2015 Release Christopher McIntosh Lead Market Simulation Coordinator

Market Simulation - Fall 2015 Release Christopher McIntosh Lead Market Simulation Coordinator

Market Simulation - Fall 2015 Release Christopher McIntosh Lead Market Simulation Coordinator Fall 2015 Release August 10, 2015 Agenda ISO Market Simulation Support Fall 2015 Market Simulation Initiatives and Timelines Fall

278 views • 26 slides
Great Smoky Mountains Regional Greenway Council (RGC) Fund Development Feasibility Assessment for

Great Smoky Mountains Regional Greenway Council (RGC) Fund Development Feasibility Assessment for

Great Smoky Mountains Regional Greenway Council (RGC) Fund Development Feasibility Assessment for Maryville-to- Townsend Greenway Plan Executive Summary October, 2015 A Gateway into Townsend Widespread Support Exists All local

379 views • 15 slides
Zero-Knowledge Proofs Joost van Amersfoort University of Amsterdam Teacher: Christian Schaffner

Zero-Knowledge Proofs Joost van Amersfoort University of Amsterdam Teacher: Christian Schaffner

Zero-Knowledge Proofs Joost van Amersfoort University of Amsterdam Teacher: Christian Schaffner TA: Malvin Gattinger October 22, 2014 1 / 27 Introduction Zero-knowledge proofs are proofs that yield nothing beyond the validity of the

415 views • 27 slides
Uniform sampling of a feasible set of model parameters Wenyu Li Arun Hegde Jim Oreluk Andrew

Uniform sampling of a feasible set of model parameters Wenyu Li Arun Hegde Jim Oreluk Andrew

Uniform sampling of a feasible set of model parameters Wenyu Li Arun Hegde Jim Oreluk Andrew Packard Michael Frenklach SIAM UQ18 APRIL 17, 2018 Acknowledgements This work is supported as a part of the CCMSC at the University of Utah,

567 views • 17 slides
2016 IADI Asia-Pacific and Regional Committee 14 th Annual Meeting and International Conference

2016 IADI Asia-Pacific and Regional Committee 14 th Annual Meeting and International Conference

2016 IADI Asia-Pacific and Regional Committee 14 th Annual Meeting and International Conference Raising Public Awareness on Depositor Protection June 15 th -17 th | lloilo Convention Center (ICC), lloilo City, Philippines What We Will Cover Today

258 views • 23 slides
HINGHAM INSTITUTION FOR SAVINGS 2020 Shareholders Meeting Safe Harbor Statement 2 This

HINGHAM INSTITUTION FOR SAVINGS 2020 Shareholders Meeting Safe Harbor Statement 2 This

HINGHAM INSTITUTION FOR SAVINGS 2020 Shareholders Meeting Safe Harbor Statement 2 This presentation contains forward-looking statements as defined in the Private Securities Litigation Reform Act of 1995. Such forward-looking statements about

430 views • 23 slides
2018 System Performance Measures Salt Lake Valley Coalition to End Homelessness Steering

2018 System Performance Measures Salt Lake Valley Coalition to End Homelessness Steering

2018 System Performance Measures Salt Lake Valley Coalition to End Homelessness Steering Committee Meeting June 12, 2019 There was an increase in sheltered persons of 5% between FFY17 and FFY18. Reported by an annual HMIS sheltered count

180 views • 6 slides
CIP Data Collection Reporting Requirements for Federal FY 2012-2016 WHY: States accepting Court

CIP Data Collection Reporting Requirements for Federal FY 2012-2016 WHY: States accepting Court

CIP Data Collection Reporting Requirements for Federal FY 2012-2016 WHY: States accepting Court Improvement Program grant funds are required to collect and report on five timeliness measures beginning in Federal Fiscal Year 2013. WHERE:

420 views • 14 slides

More recommend