NOTE: The health and safety of our members remains our top priority. We will continue to monitor and utilize guidance from the CDC, and will convert this program to a virtual format should we need to. This program will take place as scheduled, either as an in-person seminar or a webinar.
Banks aren’t just responsible for their own business continuity plans – they must also ensure that critical vendors have properly drafted, executed and tested plans. Is your bank properly addressing the connection and overlap of vendor management and business continuity planning? Have you tested this connection yet?
At this workshop, attendees will learn how best to:
- Assess and break down silos between departments handling vendor management and business continuity planning
- Manage third-party vendors via risk assessment, cybersecurity threats, vendor due diligence, monitoring and contract structuring
- Identify critical vendors and key contract provisions
- Structure a tabletop exercise of plans to exercise third-party service provider risk
- Communicate essential information during and after a business disaster
In addition, registrants will participate in a tabletop exercise to learn best practices for organizing, preparing for and conducting an effective tabletop test of a BCP plan to include third-party service provider considerations.
Workshop attendees will also receive a corresponding whitepaper, which will provide additional details on the program information covered.
Michael Carpenter – Vice President of Risk Management, Ncontracts
Mr. Carpenter comes to Ncontracts as a Solutions Architect after having built solid expertise in all facets of risk management throughout his 20-year career. He has built and run programs such as Board of Director training/reporting, BSA/AML, ID theft and red flags, information security, compliance management system, and more – making him an indispensable resource in helping bankers understand the need for third-party and risk management. Mr. Carpenter has worked in both small community financial institutions as well as larger institutions such as KeyBank and Chase Bank.
Paul Viancourt – Vice President & Solutions Architect, Ncontracts
Paul Viancourt focuses on assisting financial institutions in quantifying their risk profile and mitigating the associated risks. He has 20 years of banking experience, with diverse specialties including regulatory compliance, BSA, fraud, audit, enterprise risk management, and information security. Mr. Viancourt has worked in institutions ranging in size from $100 million to over $40 billion in assets, thus understanding the unique challenges that the size of an organization with regard to risk and compliance. He is currently a doctoral candidate pursuing a terminal degree in business administration. He holds a master’s degree in Economic Crime Management, and is certified as an anti-money laundering specialist, fraud examiner, internal auditor, and regulatory compliance manager.
The NCBA has secured a discounted rate of $189/night for our attendees at the Raleigh Marriott Crabtree Valley. To secure this discounted rate, please use the link below. To secure a room through the hotel’s website, please use corporate code T1954.
In addition, the NCBA also has a corporate rate at the Raleigh North Hills Hilton, which is $182/night. To secure this discounted rate, please use the link below.
The NCBA is partnering with SBS CyberSecurity on the Certified Banking Vendor Manager virtual training. This training is self-paced, with a launch date of June 9. Attendees will be given a roster of all participants to allow for peer discussion and networking while taking the course. Total allowed time to complete the course is ten weeks, and includes 6.5 lecture hours, 8 lab exercises and a final exam. Click HERE to watch a short video from the instructor for a more detailed description of the course.
This course includes real-world exercises to build a comprehensive vendor management program to take back to organizations. Objectives include:
- Become a trusted expert in vendor management in the eyes of your auditor or examiner
- Develop a clear understanding and confidently implement a vendor selection and review process
- Comply with FFIEC external dependency management guidelines
Topics that will be covered are:
- Vendor breaches, laws and regulations
- Information security program and risk management
- Selection of vendors
- Ongoing vendor management
- Creating a dynamic vendor management program
- Contract structuring
- IT audit and exam preparation
This is a must-attend program for ISOs, Auditors, IT Managers, Compliance Officers, Security Personnel and Operations Officers.
Jon Waldman – Co-Founder, SBS CyberSecurity and SBS Institute & Executive Vice President, IS Consulting
Jon Waldman is a co-founder and Senior Information Security Consultant for SBS CyberSecurity, a premier cybersecurity consulting and audit firm dedicated to making a positive impact on the banking and financial services industry. He maintains his CISA and CRISC certifications and received his Bachelor of Science in Computer Information Systems and his Master of Science in Information Assurance with an emphasis in Banking and Finance Security from Dakota State University. Over the last ten years Jon has helped hundreds of financial institutions across the country create and implement comprehensive, valuable, and manageable Information Security Programs. He also conducts webinars and certification programs for the SBS Institute.
Registration will open on June 1.
We are partnering with SBS CyberSecurity to bring our members the Certified Banking Security Manager virtual training. This certification is self-paced, with a launch date of September 19. Attendees will be given a roster of all participants to allow for peer discussion and networking while taking the course. Total allowed time to complete the course is ten weeks and culminates with an exam to achieve the certification. Click HERE to watch a short video from the instructor for a more detailed description of the course.
SBS’s certified advantage helps you develop an entire information security program framework to take back to your institution. After competing this program, attendees will understand how to successfully implement and manage each component of the information security program, and their knowledge of layered security programs will be boosted. Attendees will gain confidence in their decision making after learning comprehensive cybersecurity knowledge. In addition, they will dive into FFIEC cybersecurity guidelines.
Specific topics include:
- U.S. Information Security Laws and Regulations
- Information Security Program Components
- Security & Awareness Programs
- IT Audit
- Social Engineering
- Preparing for IT Examinations
- Running Effective IT & Audit Committees
This program should be attended by Managers, ISOs, Security Officers, Auditors, Operations Officers, IT Managers and anyone in Compliance. This is a must attend program! Below is a testimonial to this program and instructor, Chad Knutson:
“SBS and Chad helped me by providing the tools and information to be successful in reporting, documenting and creating proper assessments. As well as how to structure an adequate BIA and BCP plan, and those things necessary to prepare for an Audit or Exam. Taking the course helped build my confidence in my job field. I would recommend the CBSM course to anyone wishing to enhance their knowledge of the expectations of the IT Program of their institution.”
– Hilarie Haack, GA
Chad Knutson – Senior Information Security Consultant, SBS CyberSecurity
Chad is a Senior Information Security Consultant and is President of the SBS Institute for SBS CyberSecurity. SBS works with more than 900 banks around the country on information security services such as the development of Information Security Programs, Policies, and Risk Assessments, along with performing IT Audits, Penetration Tests, Vulnerability Assessments and other security services. Chad is a Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), and Certified in Risk and Information Security Controls (CRISC).
We are partnering with Blue-U Defense on this training, and will be broken into three segments:
- Surviving an Incident of Violence/Active Shooter
This course is typically provided as a foundation level course for banks, large corporations, insurance companies and associations of all sizes. Successfully surviving a sudden incident of violence is 90% mental and 10% physical skill. This course focuses on the 90% mental while concurrently providing skills to survive the 10% physical, as a last resort.
- Advanced Workplace Violence – Prepare to Win! Practical and Effective Tactics and Defense
This is an advanced course that will feature hands-on drills, scenarios, criminal mind and lecture, to show attendees how powerful the tactics that we teach are, and to show, through actually doing them, that they absolutely work! Attendees will see both the role of the “good guy” and “bad guy,” to get both perspectives. Attendees will more clearly understand the tunnel vision, OODA Loop, tactics, etc that we are teaching our students to understand and overcome.
- Physical Site Security and Compliance with Bank Protection Act
During this session, instructors will discuss how to conduct your own physical site security assessments utilizing their method. Their method does not entail looking at what many other organizations are looking at such as cameras, lighting, card readers, etc. Their theory is your building is your building, your people are your people, and your layout is your layout. So, how do they take what you currently have and, without spending any more money, significantly increase the safety and security of those people inside – your most valuable assets! The instructors will cover this and more.
Terry Choate – Co-Founder & Training Specialist, Blue-U Defense
Terry Choate is a Co-Founder and Training Specialist for Blue-U Defense. He has served as Team Commander of the Monadnock Regional Special Response (SWAT) Team and for 11 years as a Lieutenant with the Jaffrey (NH) Police Department. Prior to law enforcement, Mr. Choate spent over 20 years in management positions with Fortune 500 companies. In addition, Mr. Choate’s experience with Executive Security International provides expertise in Security Surveys, Advances, Personal and Executive Protection, CCTV Surveillance, Stalking and Dangerous Human Behavior, Anti/Counter Terrorism, and Business Security.
Joe Hileman – Co-Founder & Training Specialist, Blue-U Defense
Joe Hileman is a Co-Founder and Training Specialist for Blue-U Defense. He served as the Assistant Team Commander of the Monadnock Regional Special Response (SWAT) Team and for 11 years as a Detective with the Jaffrey (NH) Police Department. Prior to his career in Law Enforcement, he served as Security Supervisor at the corporate management level of a Fortune 500 company. Mr. Hileman holds two A.A. degrees in Criminal Justice – Law Enforcement and Criminal Justice – Corrections, Probation, and Parole.
The NCBA has secured a discounted rate of $139/night for our attendees at the Greensboro – High Point Marriott. To secure this discounted rate, please call the hotel directly at 336-852-6450 and ask for the NC Bankers rate for the night of March 3. The last day to secure this discounted rate is February 11.
Please note that attendees are responsible for securing their hotel reservations.