Vendor Management

The American Monkey Trap

Coming Soon to from a Frustrated User Near You . . . An article about how we Americans tolerate ineffective technology in the 21st century! Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . The only thing is . . . . he&...

Would I love to interview Lenovo’s Incident Response Team!

How much can failure be worth? Dan gets an idea while filling out a “customer satisfaction survey!” Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . So though I tried to comment on Lenovo’s site durin...

Data Leakage Without a Cause

or, at least, without a malicious cause . . . . . . and the risk introduced by “crapware” . . . the continued climb of cloud-offers that accompany new assets!  (That’s consonance, kids!) Another one of those Dan’s New Leaf Posts, meant to inspire tho...

Hardware vendors . . . low risk?

NOT! Do we need to do due diligence on our “hardware vendors?” Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . NO NEED FOR DUE DILIGENCE ON HARDWARE VENDORS . . . . . OR NOT???? I finally bought my new lapt...

‘Anonymized’ Credit Card Data Isn’t Really Anonymous

An article review. Food for your ‘Privacy Policy’ Thoughts A recent article from the Associated Press highlights a study that reviewed ‘anonymized’ credit card data. The MIT researchers were able to identify individuals based on their credit card actions alone. With over ...

Don’t Mis-Interpret the Vendor Management Regs!

Heck, don’t misinterpret the regs period! “Ahem . . . . how about a little sanity please?” An article shared on LinkedIn by my friend Kelli Schultz (of Digital Compliance) got me thinking: I’ll bet we’re all prone to mis-interpret various regu...

VendorBlog

And now let’s pause to reflect upon vendor risk . . . . Click Here for the Vendor Blog! “20% of our vendors have malware infections” A recent study reminds us to recognize that even if anti-malware is the least of our worries, that doesn’t mean our p...

False Sense of Security of the Month

An untested control is not a control, it’s a wish. I’m not the kind of person who trusts technology or controls.  It’s just not in me. But I do trust my wife’s intuition. So when I saw this youtube video, forwarded to me by my friend Joe Cychosz, I w...

The FDIC Audit is In! The FDIC Audit is In!

FDIC Audit reveals “familiar” weaknesses In 2013, the FDIC was audited by the General Accounting Office, an annual practice since 2011, and the results are now in.  If you are an FDIC bank, you may want to file these results in your vendor management program, an...

Vendor Management 2014

Mark your calendars! Dan Hadaway will be delivering a workshop with the Indiana Bankers Association to outline what makes an effective vendor management program. The workshop will be on August 21st starting at 9:00 AM and ending at 4:00 PM. For information on how to register...