FDIC issues guidance on third-party risk

Daily news headlines

WASHINGTON, DC – The Federal Deposit Insurance Corporation (FDIC) has issued guidance on how to handle the potential risks arising from third-party relationships. The paper outlines risk management principles that may be tailored to suit the complexity and risk potential of a financial institution's significant third-party relationships.

The paper outlines the potential risks that may arise from the use of third parties and addresses the following four basic elements of an effective third-party risk management programme: risk assessment; due diligence in selecting a third party; contract structuring and review and oversight.

It also highlighted the fact that the board of directors and senior management of a financial institution are ultimately responsible for managing activities conducted through third-party relationships, and identifying and controlling the risks arising from such relationships, to the same extent as if the activity were handled within the institution.

The guidance is intended to supplement the principles contained in policy guidance that has previously addressed third-party risk in the context of specific functions, such as information technology. And is intended to assist in the effective management of third-party relationships, and should not be considered as a set of required procedures, said the FDIC.

Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.

To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe

You are currently unable to copy this content. Please contact info@risk.net to find out more.

Investment banks: the future of risk control

This Risk.net survey report explores the current state of risk controls in investment banks, the challenges of effective engagement across the three lines of defence, and the opportunity to develop a more dynamic approach to first-line risk control

You need to sign in to use this feature. If you don’t have a Risk.net account, please register for a trial.

Sign in
You are currently on corporate access.

To use this feature you will need an individual account. If you have one already please sign in.

Sign in.

Alternatively you can request an individual account here