About Us | Contact Us
View Cart
Archive for 'Vendor Management' Category

Canaries in a Coal Mine

By Jolley | Hadaway - Last updated: Tuesday, June 6, 2017

Recognizing early signs of trouble can save you from big issues later. A Jolley|Hadaway Article Maybe you’ve already seen some of the signs yourself. Your mouse cursor may move on its own, when you’re not touching it. Or you get notifications for a delivery, but the address isn’t yours. Those are some dead canaries: signs […]


Four and Four – Questions to Simplify Vendor Management

By Dan Hadaway - Last updated: Thursday, April 6, 2017

Two sets of questions that can help start your vendor due diligence adventure. A quick Dan’s New Leaf Post, meant to inspire thought about IT Governance . . . . When you’re just starting to address the issue of vendor management, it can seem like a daunting task.  And how do you explain to your vendor […]


Proposed Bill Would Make Cybersecurity Disclosure The Board’s Responsibility

By Vigilize - Last updated: Tuesday, March 28, 2017

The Cybersecurity Disclosure Act of 2017 Would Make The Board Report on Its Own Expertise An article review. For those of you wondering if you should be adding a Cybersecurity expert to your board of directories, you may be getting out in advance of law.  We at infotex have been invited to consult with several bank boards, […]


Financial Statement Review in Vendor Management

By Dan Hadaway - Last updated: Monday, March 13, 2017

What are the expectations for Financial Statement Review? For banks and credit unions. Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . I’m often asked, “what should we be doing when it comes to financial statement review during vendor management.” Let me start off by […]


Digital Security Standard Compliance: Is It Enough?

By Jolley | Hadaway - Last updated: Friday, February 24, 2017

While the credit card industry-backed program has good aspects, it should not replace the SOC-2. With the number of different security standards–and ways to test those standards–out there, it can be difficult to stay on top of just what is required, compliance wise, for a specific situation. Case in point, we recently had a client with […]


FFIEC Issues a Revealing Cybersecurity Assessment Tool FAQ

By Vigilize - Last updated: Wednesday, October 26, 2016

Questions from vendor management to mitigating controls covered in the new document. An article review.   The FFIEC released a document earlier this month covering some of the most frequently asked questions surrounding the Cybersecurity Assessment Tool (CAT), and it’s certainly worth taking a look at as many of their answers are eye-opening! Many have wondered […]


It’s 10 P.M., Do You Know Where Your Vendor’s Insurance Certificates Are?

By Matt Jolley - Last updated: Tuesday, August 9, 2016

It’s a small thing, but it could cause big problems down the road… Staying on top of your vendor management duties is a never-ending task, why it almost seems like as soon as you’ve completed your due diligence on the last vendor on your list it’s time to start on the next round of annual […]


Hadaway to delivery Daylong Vendor Management Workshop at the IBA

By Vigilize - Last updated: Monday, June 22, 2015

Another in the IT Governance Tour Sharpening Your Vendor Management Skills! Designed for Vendor Owners, Information Security Officers, Compliance Officers, Vendor Management Committees. Register Here! July 16th, 2015  9am to 4pm Because: Appendix J is just an examination away! Vendor Risk is still the #1 risk facing most community banks. Reviewing the SSAE-16 can actually […]


Cloud Priorities 2015

By Dan Hadaway - Last updated: Wednesday, April 8, 2015

A good question . . . But my answer might not be broad enough! Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . The Cloud Computing Association (CCA) is “reaching out” to persons asking their “Top Three Cloud Priorities.”  I found that interesting.  The e-mail, which […]


Study: How to Secure Your Web Conferencing Solutions

By Vigilize - Last updated: Sunday, March 8, 2015

An article review. As reliance on web based conferencing grows, companies must assess the risk associated with using the technology. We’re all using web conferencing tools to reduce travel costs and increase communication. Like any other technology, the tools come with risks. A recent study by Forrester Research surveyed “150 regulated and nonregulated organizations in […]