Fandom

The IT Law Wiki

Guidance on Managing Outsourcing Risk

32,199pages on
this wiki
Add New Page
Talk0 Share

Ad blocker interference detected!


Wikia is a free-to-use site that makes money from advertising. We have a modified experience for viewers using ad blockers

Wikia is not accessible if you’ve made further modifications. Remove the custom ad blocker rule(s) and the page will load as expected.

Citation Edit

Board of Governors of the Federal Reserve System, Guidance on Managing Outsourcing Risk (Supervisory Letter SR 13-19) (Dec. 5, 2013) (full-text).

Overview Edit

The purpose of this publication is to assist financial institutions in understanding and managing the risks associated with outsourcing a bank activity to a service provider to perform that activity. This guidance builds upon the FFIEC Outsourcing Technology Services Booklet that addresses outsourced information technology services and remains in effect.

The guidance addresses the characteristics, governance, and operational effectiveness of a financial institution's service provider risk management program for outsourced activities beyond traditional core bank processing and information technology services. Further, this guidance applies to all service provider relationships regardless of the type of bank activity that is outsourced.

In summary, the guidance describes

  • Risks from the Use of Service Providers: discusses potential risks arising from service provider relationships.
  • Board of Directors and Senior Management Responsibilities: outlines supervisory expectations for a financial institution's board of directors and senior management in managing risks associated with service provider relationships.
  • Service Provider Risk Management Programs: describes the broad framework and processes to effectively manage risks associated with service provider relationships.

Also on Fandom

Random Wiki