VENDOR MANAGEMENT

Assess and monitor risk for internal & external resources

 

Our vendor management experts help your institution categorize, assess and maintain regulatory compliance requirements for vendors and service providers.

 

We work with key personnel from each department of your institution to identify which vendors require no assessment, contract tracking only or a full assessment. For those requiring a full assessment, we help determine:

 

  • Effectiveness of controls in place

  • Financial risk

  • Complexity of service

  • Ability of the institution to provide service itself

  • Availability of alternative vendors

  • Speed in which the institution can change vendors (if necessary)

  • How critical the vendor is to services/operations

  • GLBA, SAS70, and Red Flag requirements

  • Ways to mitigate identified risks

  • And more

1/6

INDEPENDENTLY POWER YOUR PLAN OR PAIR WITH OUR PROFESSIONAL SERVICES

COMPLIANCE ASSISTANT PLUS

(CA-Plus) SOFTWARE SOLUTION 

Comprehensive, compliant risk management and disaster recovery

Compliance Assistant Plus (CA-Plus) is our fully-automated, fully-integrated database solution designed to help financial institutions develop, distribute and maintain FFIEC-compliant strategies for risk management and disaster recovery. 

 

Each module is sold and licensed separately — so your institution gets the solution it needs, at a price it can afford. In addition to our customizable forms and reports, CA-Plus allows you to easily manage regulatory requirements and create electronic manuals to demonstrate compliance and distribute plan documentation in formats familiar to many examiners so your audits and examinations go quickly and smoothly.

Develop, document and distribute a comprehensive, practical business continuity strategy — customized to meet the unique needs of your institution and FFIEC requirements.

BUSINESS CONTINUITY PLANNING MODULE

Ensure your institution is prepared to get business back on track after any emergency.

Identify and control risks associated with IT operations, internal and external technologies, and cybersecurity threats in accordance with FFIEC and NIST standards.

ENTERPRISE
-WIDE IT RISK MANAGEMENT
MODULE

Assess and effectively control risks throughout your institution while meetings FFIEC requirements.

+ Each module fully-
   integrated, separately sold
+ Customizable forms,
   reports, macros & queries
 
+ Intuitive navigation &
   browser-like interface
 
+ Easy-to-use, automated
   database maintenance tools
 
+ Full Microsoft Office &
   Adobe Acrobat integration
+ Browser-based electronic
   document distribution

Identify, prioritize, and document requirements for all the vendors your institution relies on to conduct operations in compliance with FFIEC standards.

VENDOR 
MANAGEMENT
MODULE

Manage regulatory compliance requirements for internal and external service providers.