OCC Bulletin 2017-43: Guidance for Risk Management of New Activities
In the OCC bulletin 2017-43, banks are reminded that new lines of business are rife with risk potential. Careful vetting is crucial. Nrisk can help.
"Deficient Vendor Management Practices" Result in $1.5 Million Fine
Missouri bank slapped with fines for what the OCC calls \"deficient vendor management practices.\" Here's what happened and how you can avoid similar fines
5 Things Vendors Want You to Know Before You Buy
If you could get a peek into the minds of your vendors when you're considering a purchase, here's what you'd find. Check out what vendors want you to know.
How Did We Get Here?: A History of BSA
BSA/AML is kind of like home that's been added onto over many years. It seems a little disjointed because different administrations have added their ideas.
Regulatory Alphabet Soup Part 2: The Predicted Death of GRC
As Gartner moves away from using the term GRC and towards IRM, we feel strongly the risk management industry will soon leave this buzzword out to die.
The BSA/AML Compliance Pep Talk You Need
Ever wonder what happens to your SAR reports? Believe it or not, they actually pay off. Keep up the good work on your BSA/AML compliance efforts.
FDIC Supervisory Insights for Summer 2017: Focus on BSA
FDIC BSA 2017 Supervisory Insights. The FDIC released its Supervisory Insights for Summer 2017. This article summarizes that report.
Déjà vu: Wells Fargo Can't Stay Out of Trouble
After its account-opening scandal last year, you’d think Wells Fargo would have examined all its policies and procedures
Here We Go Again: Vendor Cybersecurity Breaches Keep Wreaking Havoc
Vendor cybersecurity breaches once again wreak havoc on user data. Read about the millions of accounts hacked and leaked online from a telecomm giant.
3 Reasons Chief Risk Officers Fail
A new study concluded that big banks that employed a Chief Risk Officer were far more likely to be overexposed to the riskiest, new financial derivatives.
Beach Bummed: How One Construction Crew Ruined the Summer Season
The word disaster conjures up images of tornadoes, hurricanes, and terrorist attacks, but sometimes it starts with a construction crew.
OCC Singles Out a Bank Director for Excessive CEO Compensation
The OCC recently called out a bank director for misconduct around compensation. Here's a quick lesson in how to fail as a bank director.
What Took 5 Years and $10 Million and Did Nothing to Punish Wall Street for the Mortgage Crisis?
Here's what we learned from this intriguing documentary about the only commercial bank criminally charged as a result of the mortgage crisis
How Are You Coping with a Growing Vendor List?
As financial institutions work with more vendors, it's easy to miss third-parties who need to be reviewed just like more obvious ones.
Much Ado About Nothing: Update to the FFIEC Cybersecurity Assessment Tool Barely Worth a Mention
When we looked at the FFIEC's update to the cybersecurity assessment tool, we discovered the changes to be minor. Good news; Ncyber already has the update.
FDIC Guidance: Model Risk Management of Third-party Vendors
Model Risk Management: FDIC-regulated banks with more than $1 billion in assets and those that use a complex model that is will be subject to new guidance.
5 Ways to Succeed at Vendor Management
Risk and vendor management is all about analysis and organization, but many risk officers get bogged down in organization and lose time for analysis.
Don’t Confuse Clarity with Forgiveness
OCC to label violations of laws and regulations as “new,” “self-identified,” or “repeat” when communicating a violation to banks starting July 1.
STOP! Collaborate Cautiously and Listen- The OCC is Back with New Third-Party Risk Management Guidance
The OCC has published new guidance on 3rd-party risk management. Key takeaway: There is no one-size-fits-all approach to third-party risk management.
Spreadsheets Aren’t Free: 5 Hidden Costs
The costs your institution will incur if it’s using spreadsheets to oversee risk management or compliance may not be obvious until it's too late.
Will Your Vendors Fall Victim to Ransomware and Other Cybersecurity Threats?
63% of cybersecurity breaches occur through third-party vendors. That's why it's vital that your vendor management process protects you from threats.
Ncontracts Acquires Supernal Software to Bring Customers BSA and Compliance Solutions
When I founded Ncontracts in 2009, my goal was to provide a way to make risk management more efficient by eliminating the unconnected data, duplicated
FinCEN: MoneyGram Compliance Officer on the Hook for $250,000 Penalty
The former chief compliance officer of MoneyGram International was fined $250,000 this month and banned from serving in a compliance function.
Independent Banker Magazine Interviews Michael Berman, Ncontracts CEO
Independent Banker interviews Michael Berman on cybersecurity risk assessments and how financial institutions can stay secure.
Inside the New SSAE 18: Vendor Management Changes
The new SSAE 18 vendor management rules impact every financial institution. In this blog post, we look at each change and how it will affect your FI.
Risk Management Master: Q&A with Ncontracts’ Mitch Klein
Klein sat down to talk about managing risk, what it’s like to be on the vendor side of a relationship, and future risk management trends.
What Does Your Customer Data Have in Common with a Hit Netflix Show?
Vendor risk isn't limited to banks and credit unions. Hollywood is vulnerable too. Netflix revealed the entire season of Orange is the New Black was leaked
Vendor Management: What the NCUA Really Wants
When a financial institution outsources an activity to an outside vendor, it can enhance the member experience, but it can also introduce increased risk.
Whitepaper - Revelations from the FDIC's OIG Report
The FDIC's OIG found widespread deficiencies in the banking industry regarding vendor management. This whitepaper summarizes and explains these findings.
Vendor Management: What the Fed Really Wants
The Fed has specific needs regarding vendor management. This article looks at what the Fed wants when it audits your financial institution.