Vendor Management – What Happens Before & After The Contract?
Outsourcing allows an institution to offer its customers enhanced services without the various expenses involved in owning the required technology or maintaining the human capital required to deploy and operate it. In many situations, outsourcing offers the institution a cost effective alternative to in-house capabilities. Outsourcing, however, does not reduce the fundamental risks associated with information technology or the business lines that use it.
Financial institutions should have a comprehensive outsourcing risk management process to govern their technology service provider (TSP) relationships. The process should include risk assessment, selection of service providers, contract review, and monitoring of service providers. Outsourced relationships should be subject to the same risk management, security, privacy, and other policies that would be expected if the financial institution were conducting the activities in-house.
The Knowledge Group is producing a LIVE webcast that will explore the issues and concerns surrounding this topic. Register now by clicking the “Register“ button below. Advanced registration is recommended as enrolment is limited for this course.
- Key contract provisions for Supplier Relationship Management (e.g., Benchmarking, Audit Rights, modification of service levels, governance structure, improvements, price adjustments, etc.)
- Managing transition -- what to do before you sign to ensure a smooth transition after you sign
- Renewals -- when is it a good time to renegotiate the deal?
- Dispute resolution -- how to get through a dispute with a vendor without killing the deal or the relationship.
- Privacy and Security Compliance – Managing privacy and security compliance through the right contractual provisions.
- Cloud Computing – What promises and challenges does this service hold for financial institutions? How do you manage a cloud computing vendor?
- Globalization – How offshoring changes the vendor management process – managing the risks and maximizing the benefits of sourcing offshore.
- The vendor risk assessment: what is it, how do I do it, who's responsible
- Ongoing oversight and monitoring of the vendor relationship
- Risk Assessment and requirements
a. Assess risk from outsourcing
b. Develop risk-based written requirements
- Vendor selection
a. Request for Proposal (RFP) – The primary tool for soliciting vendors.
b. Due diligence – Know your vendor
Who Should Attend:
- Senior Vendor Managers
- Senior Vice Presidents
- Business Development Directors/Managers
- Marketing Director/Managers
- Chief Executive Officers
- Chief Marketing Officers
- Chief Operating Officers
- Project Managers
Matthew A. Karlyn is senior counsel with Foley & Lardner LLP and is a member of the firm's Information Technology & Outsourcing Practice. Mr. Karlyn is also a member of the firm's Privacy, Security & Information Management Practice.
Mr. Karlyn has extensive experience with transactions relating to outsourcing and information technology, including IT outsourcing, technology licensing, business process outsourcing, systems integration, cloud computing and software development.
Mr. Karlyn advises companies and associations on all matters involving the use of information technology and outsourcing initiatives, including managing the RFP process and drafting critical components of the RFP, vendor selection, contract development and negotiation, setting service levels and other performance criteria, advising on drafting and negotiating project management and governance terms and conditions, and assisting in the management of the transaction process.
Mr. Karlyn has been named a judge for the CIO 100 Awards. Every year, the CIO 100 Awards honor 100 companies that demonstrate excellence and achievement in IT.
Matthew A. Karlyn is senior counsel with Foley & Lardner LLP and is a member of the firm's Information Technology …
Rebecca Eisner, Partner, focuses her practice on business and technology sourcing and outsourcing, information technology transactions, privacy, and security. She has represented clients in complex global and offshore technology and business process outsourcing transactions, including information technology, finance and accounting, human resources, procurement, customer relationship and call centers, and development and transformational outsourcing. She also has experience with re-structuring and re-negotiating outsourcing transactions, in-sourcing, managing acquisitions and divestitures in outsourcing transactions, and termination of outsourcing arrangements, and other strategic sourcing relationships.
Rebecca has represented both buyers and providers of technology goods and services. Her extensive experience includes software licensing, maintenance, support and development, application maintenance, offshore development, ERP implementations, systems integrations, back office processing services, ASP agreements, technology development and licensing agreements, hosting and data center agreements and network management agreements, and hardware acquisition and maintenance agreements. Rebecca regularly advises clients in data transfer and privacy issues, electronic contracting and signatures, and web site design and review. Her privacy work includes advising clients on privacy and data transfer issues affecting corporate initiatives, such as divestitures, global data programs, and global technology solutions
Rebecca is nationally ranked in the areas of technology and business process outsourcing. She has been described as “an expert negotiator, and intelligent, focused and pragmatic." She has also been named as among the World's Leading Lawyers (information technology), Best Lawyers in America (technology law and information technology), one of the top women attorneys in Illinois (Leading Lawyers Network 2006, 2007, 2009) and on the list of Illinois Super Lawyers (2007-2009). She is also a co-chair of the International Association of Outsourcing Professionals (IAOP) Security Chapter.
Rebecca Eisner, Partner, focuses her practice on business and technology sourcing and outsourcing, information technology transactions, privacy, and security. She …
Susan Orr is a leading financial services expert with vast regulatory, risk management, and security best practice knowledge and expertise. During her 14 year tenure as a bank examiner, Susan held numerous lead positions including Regional IT Examination Specialist, Special Assistant to the Regional Director, Special Assistant to the Director of DSC, and Special Assistant to the Vice Chairman of the FDIC. Susan was also a lead instructor for the FDIC’s technology school and was instrumental in key industry initiatives such as the FDIC E-Risk Strategic Initiatives Risk Monitoring Committee, the Chicago Region Interagency Technology Group, and the Federal Financial Institutions Examination Council (FFIEC) IT Handbook rewrites. Prior to launching her consulting practice, Susan was Vice President of Regulatory Compliance for an Internet security company where she advised staff, customers, and partners on regulation, security, and risk management. As an auditor and consultant, Susan is dedicated to assisting financial institutions in implementing appropriate policies and controls to protect confidential information and comply with regulatory mandates and best practices. Her expertise as an auditor and former examiner provides her the knowledge and expertise to conduct comprehensive IT general control and data security reviews and assist de novo institutions in the vendor selection process, preparing policies and procedures, and instituting controls. She also consults for numerous security providers and vendors helping them align products and services to meet institution regulatory mandates. She has over 18 years experience in the IT regulatory field and speaks regularly at risk management and security seminars and conferences and has authored numerous white papers on emerging information technology and security risk management topics. Susan retains close relationships within the FFIEC agencies as well as industry trade groups to stay abreast on new technologies, best practices, and regulatory issues. Susan is a Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM) and Certified Risk Professional (CRP).
Susan Orr is a leading financial services expert with vast regulatory, risk management, and security best practice knowledge and expertise. …
Mr. Henley joined BITS, the technology policy division of the Financial Services Roundtable, on July 6 as the Senior Vice President of Regulation. His responsibilities include managing relationships with federal regulatory agencies, drafting policy positions on operations and technology issues, and providing subject matter expertise on regulatory issues for the members of the Financial Services Roundtable.
Prior to joining the Financial Services Roundtable, Mr. Henley spent more than 20 years in federal government service, most recently as the Director of IT Examinations for the Office of Thrift Supervision. As the Director, Mr. Henley was the agency’s principal advisor regarding the development, implementation and maintenance of policies, procedures and guidelines pertaining to the examination and supervision of saving associations in the area of Information Technology (IT) and Technology Risk Management, including electronic banking activities; and is the OTS representative to the FFIEC IT Subcommittee. Prior to joining the OTS, Mr. Henley spent 17 years with the FDIC, including 9 years as a Bank Examiner in the Dallas Region; and 8 years in the FDIC’s headquarters in Washington, DC in various positions including Examination Specialist in both the Planning and Program Development Section and in the Technology Supervision Branch, and the acting Section Chief of the Capital Markets Policy Branch.
Mr. Henley is a 1989 graduate of the Sam Houston State University, Huntsville, Texas with a Bachelors of Business Administration degree in International Business, and minors in Economics and French. In 2002, Mr. Henley successfully completed the Graduate School of Bank Operations and Technology, at the Owen Graduate School of Management, Vanderbilt University, Nashville, Tennessee.
Mr. Henley joined BITS, the technology policy division of the Financial Services Roundtable, on July 6 as the Senior Vice …
Print and review course materials
Method of Presentation:
On-demand Webcast (CLE)
Unlock All The Knowledge and Credit You Need
Leading Provider of Online Continuing Education
It's As Easy as 1, 2, 3