Pub. 3 2013-2014 Issue 4
O V E R A C E N T U R Y : B U I L D I N G B E T T E R B A N K S - H E L P I N G C O L O R A D A N S R E A L I Z E D R E A M S January • February 2014 15 Taking a step back from the checklists and trying to see the spirit of the law can help to keep you from being overwhelmed. It can also help you clean up the parts of your information secu- rity program that may have gotten out of hand over the years. Vendor management is one area that can get overwhelming and unnecessarily complex when you try to check things off without truly understanding the process. Vendor man- agement also seems to be on many examiners’ radars this year, so now is a great time to clean up your vendor management programandmake it work for you instead of the other way around. “Financials: show you the vendor’s financial health. You’ll want these from companies you couldn’t easily replace if they were to go out of business.” FEATURE ARTICLE BY STEPHANIE CHAUMONT, CISA, CISSP, SECURITY+ MANAGING VENDOR continued on page 16 Managing Vendor Management I know compliance requirements can feel like a burden…and doing compliance solely for the sake of compliance can really feel like a burden.
Made with FlippingBook
RkJQdWJsaXNoZXIy OTM0Njg2