Our institution is replace out ATMs through a vendor we have use for several years. What are the Due Diligence considerations for ATM hardware and software providers?
On top of your normal due diligence practices performed on critical vendors, those supplying devices such as ATMs introduce additional risks. Not only are you concerned about the overall practices of the organization, but you also have to assess the design and implementation of the hardware itself. Here are a few items to consider when evaluating a new ATM vendor or product.
I'm always interested in what others are doing for due diligence for specific, yet common vendors such as these, so I encourage others to respond with their experience of this process as well.