Skip to content
Contract Lifecycle Management – Icertis
  • Platform
    • ICI Platform
    • Business Applications
      • Clinical Trials
      • Collaboration Portal
      • GDPR Compliance
      • Obligation Management
      • Promotions, Rebates, & Royalties
      • Proposal Management
      • Risk Management
      • Sourcing
      • Supplier Onboarding
    • Experiences
      • Coupa
      • Microsoft
      • Salesforce
      • SAP Ariba
      • Workday
    • AI Applications
      • DiscoverAI
      • NegotiateAI
      • VisualizeAI
    • Blockchain
  • Solutions
    • Department Solutions
      • Corporate
      • Finance
      • Legal
      • Procurement
      • Sales
    • Industry Solutions
      • Energy and Utilities
      • Federal
      • Financial Services
      • Healthcare
      • Manufacturing
      • Pharmaceutical
      • Professional Services
      • Retail
      • Technology
      • Transportation
  • Customers
    • Icertis Customers
      • Airbus
      • Best Buy
      • Daimler
      • Porsche
      • Vertiv
      • See All
  • Partners
    • Icertis Partners
      • Adobe
      • Microsoft
      • Salesforce
      • SAP Ariba
      • Workday
      • See All
  • Resources
    • All Resources
      • Analyst Reports
      • Blog
      • Case Studies
      • eBooks
      • Icertis CLM Toolkit
      • Podcasts
      • Videos
      • Webcasts
  • Company
    • About
      • Leadership Team
      • Board
      • Careers
      • Events
      • Media Kit
      • Newsroom
    • Why Icertis?
      • Bold Vision
      • Unrivaled Expertise
      • Enduring Commitment
  • Links
    • Demo
    • Contact
  • Platform
    • ICI Platform
    • Business Applications
      • Clinical Trials
      • Collaboration Portal
      • GDPR Compliance
      • Obligation Management
      • Promotions, Rebates, & Royalties
      • Proposal Management
      • Risk Management
      • Sourcing
      • Supplier Onboarding
    • Experiences
      • Coupa
      • Microsoft
      • Salesforce
      • SAP Ariba
      • Workday
    • AI Applications
      • DiscoverAI
      • NegotiateAI
      • VisualizeAI
    • Blockchain
  • Solutions
    • Department Solutions
      • Corporate
      • Finance
      • Legal
      • Procurement
      • Sales
    • Industry Solutions
      • Energy and Utilities
      • Federal
      • Financial Services
      • Healthcare
      • Manufacturing
      • Pharmaceutical
      • Professional Services
      • Retail
      • Technology
      • Transportation
  • Customers
    • Icertis Customers
      • Airbus
      • Best Buy
      • Daimler
      • Porsche
      • Vertiv
      • See All
  • Partners
    • Icertis Partners
      • Adobe
      • Microsoft
      • Salesforce
      • SAP Ariba
      • Workday
      • See All
  • Resources
    • All Resources
      • Analyst Reports
      • Blog
      • Case Studies
      • eBooks
      • Icertis CLM Toolkit
      • Podcasts
      • Videos
      • Webcasts
  • Company
    • About
      • Leadership Team
      • Board
      • Careers
      • Events
      • Media Kit
      • Newsroom
    • Why Icertis?
      • Bold Vision
      • Unrivaled Expertise
      • Enduring Commitment
  • Links
    • Demo
    • Contact
Blog hero image
Home > Blog > New FDIC report finds cybersecurity risks in bank contracts

Contract Intelligence Blog

Apr 28, 2017

New FDIC report finds cybersecurity risks in bank contracts

  • Risk Key Keyboard Red

Contracts with tech service providers fail to adequately address hacking and system recovery risks.

The FDIC’s Office of Inspector General released a report earlier this year that found major gaps in how financial institutions (FI) are addressing business continuity issues, including cybersecurity, in their contracts with technology service providers (TSPs).

Most FIs, the report concluded, did not fully assess the potential impact and risk that gaps in TSP contracts may have on their ability to manage business continuity planning and incident response.

The report, which looked at a sample of 48 contracts from 19 financial institutions, found that only 50% had the required business continuity provisions. Those that did address business continuity often failed to elaborate on the TSPs responsibilities for maintaining a continuous risk management process including ongoing risk scenarios and restoring services.

Potential liability for banks

The poor contract management practices could expose banks to potential liability if they suffer confidential information breaches due to cybersecurity attacks. In 2008, the FDIC issued a Financial Institution Letter titled Guidance for Managing Third Party Risk which emphasized that the FIs board of directors and senior management ultimately are responsible for managing activities and controlling risks for their TSP and any third party relationships related to confidential information on customers.

The report provides guidance on how to remedy this situation and cites improvements in processes, provisions and contract management. The agency encourages the FIs to ensure that proper expectations and obligations for both the FI and TSP are outlined in a written contract prior to entering into an agreement. The FDIC has provided some key contract provisions to help with compliance and cites the value in having a contract management system to ensure the required language is included before execution.

The FDIC’s Risk Management Supervision division is expected to continue to raise the issue with banks and further study and assess how banks are addressing these issues through October 2018.

Next steps

Companies in the financial industry, as well as other market segments, are becoming increasingly aware of the risk exposure within their contracts – on both the buy side, as in the examples above, but also on the sell-side. Icertis has developed an interactive assessment tool that will help you discover sources of potential contract risk across your enterprise and provide an immediate score of your risk profile in three key categories. Get your personalized contract risk assessment here.

Icertis Is a Leader in Gartner’s First Magic Quadrant for Contract Lifecycle Management

Icertis is proud to be named a Leader in the first ever Gartner Magic Quadrant for Contract Life Cycle Management (CLM) based on its Completeness of Vision and Ability to Execute. Gartner evaluated 12 vendors on 15 criteria and positioned Icertis furthest right for its completeness of vision.

Read the Report

2019-08-20T13:09:22-07:00
❮Prev
Blog
Next❯

Explore more topics

  • Artificial Intelligence (AI)
  • Blockchain
  • Company Updates
  • Contract Intelligence
  • Contract Management Software
  • COVID-19
  • Industry News & Insights
  • Legal
  • Partner Stories
  • Risk and Compliance
  • Sales
  • Sourcing
  • Success Stories
The recognized analyst leader for CLM.
  • See a Demo
  • Contact
  • Platform & Software
    • Contract Management Platform
    • Blockchain Contract Framework
    • Customers
    • Experiences
    • Our Partners
    • Support
  • Solutions & Applications
    • AI Applications
    • Business Applications
    • CLM Solutions by Department
    • CLM Solutions by Industry
  • Resources
    • Analyst Reports
    • Blog
    • Case Studies
    • COVID-19 Resources
    • eBooks
    • Icertis CLM Toolkit
    • Icertis Group Demo
    • Podcasts
    • Webcasts
    • What is CLM?
    • What is Contract Management?
    • What is Contract Management Software?
  • Company
    • About Icertis
    • Awards
    • Contact
    • Leadership Team
    • Board Members
    • Careers
    • Events
    • Newsroom
    • Media Resources
    • Why Icertis
  • Deutsch
  • Español
  • Français

© Copyright 2021 Icertis. All rights reserved.

  • Privacy Statement
  • Disclaimer