Policy, Program, and Procedures

 View Only

Welcome to the Policy, Program, and Procedures Community. Here you will find the latest discussions and resources that can help you in this area. This community focuses on creating a policy, program, and procedures; best practices; ideas; tips; guidance; how to implement; and more. Note: You will need to Sign In to join in the discussions and access resources. 

About Third-Party Risk Policy, Program, and Procedures: Successful vendor risk management requires a fully documented set of practices. Regulators and examiners expect you to have three written documents – a policy, program, and procedures. These documents must be updated at least annually or more frequently as guidance changes or significant organizational changes occur. And, it’s important the work product produced matches what the policy and program documentation says.  

Latest Discussion Posts

  • Profile Picture

    RE: Policy procedure share

    By: Ashley Balletto , 6 days ago

    Look into bankpolicies.com. Brent and his team are amazing. More

  • Profile Picture

    RE: Other Banks as Vendors

    By: Linda Tuck Chapman , Third Party Risk Institute Ltd. , 29 days ago

    As a regulated financial institution, you are required to have a complete inventory of all third parties, including other financial institutions. Even though you may receive limited responses to your requests for due diligence, you will need documentary ... More

    1 person likes this.
  • Profile Picture

    RE: Other Banks as Vendors

    By: Premika Mishra , one month ago

    Other financial institutions are included in our third-party evaluation scope and are assessed based on their risk level, just like any other third party. If a financial institution as a third party is classified as Tier 1 (high risk), it undergoes the ... More

    1 person likes this.
  • Profile Picture

    RE: Other Banks as Vendors

    By: Mike Arend , one month ago

    This really depends on the role the FI plays in the relationship with the individual organization. Because of limitations with regulatory governing bodies sharing information relating to their oversight of FIs, it's fairly common to take on this due ... More

  • Profile Picture

    Policy procedure share

    By: Anonymous Member , one month ago

    This message was posted by a user wishing to remain anonymous All, Through a series of events I was put in touch with a small bank in Louisiana who needs some help with their TPRM program. I am not able to help then at this time as I have too much ... More

Polls

Most Active Users List