[Image by creator  from ]

Return Policy

insideARM.com strives to provide compelling, informative, and useful products to the ARM industry. If you are unsatisfied with any product for any reason, you can return it for a full refund. Please contact orders@insideARM.com or call 240.499.3834.

About the insideARM.com Store

insideARM.com’s Store is one of the most trusted online bookstores for the ARM industry. From reports to tutorials to webinars, our products are designed specifically to put you ahead of the game and the regulators.

What to Expect

Once you've completed your purchase for a downloadable product, you can download it by:

  • Logging in to your account. From "My Account," go to the "My Downloadable Products" page to download your products.
  • In the order confirmation email you are sent the product listing will include a download link which you can also use to directly download your purchases.

Download a Complementary Sample of this Product

Cost control, efficiency of process, and the globalization of the ARM industry have significantly increased the use of outside vendors to manage everything from the telephony systems we use, to the letters we send, to the individuals speaking to our customers.

With that expansion of outsourcing there is a risk of those tasks being done incorrectly or outside of compliance with either your policies or regulatory guidelines. Recognizing, reviewing and remediation have become not just a good idea but a vital part of the relationships with your vendors. These vendors have become an extension of your company.

You must increase your review of these companies to ensure good corporate governance. You need to understand the risk they pose to your organization along with the obvious benefits.

To the Point: Vendor Management gives your agency insight and a road map of best practices.

Table of Contents:

  • Contributor
  • Dan Huston, CPA, CFIRS
  • How to Use This To the Point Guide
  • Introduction
  • What is Vendor Risk Management?
  • Why you need to do this
  • What is involved in a Vendor Risk Management Program?
  • STEP 1: Basic Due Diligence
  • Ready, Set, Go
  • Conduct Risk Assessments in Key Areas
  • Check it Twice
  • Company Stability and Reliability
  • Data Security
  • Hiring Practices
  • Insurance and Bonds
  • Training
  • STEP 2: Choosing what you need to review
  • Tailor your efforts to the industry and relationship
  • STEP 3: What to look for
  • Compliance with Laws and Regulations - Compliance Program
  • Compliance with Laws and Regulations - Compliance Officer
  • Compliance with Laws and Regulations - Key Regulations
  • Consumer Notices
  • Consumer Complaints are Key
  • CFPB Complaint Portal
  • Websites
  • Credit Reporting
  • For vendors transmitting or relying upon Credit Bureau records, evaluate
  • Payment Processing
  • For vendors processing or transmitting payments on your behalf, evaluate
  • Audits and Defining Unmitigated Risk
  • Risk Assessments
  • Targeting Key Areas
  • Considering Vendor and Client Audits
  • Policies and Procedures
  • Auditing Communications
  • Sample Sizes
  • Testing Transactions
  • Audits
  • Summing it all up
  • Common Issues in Audits
  • Best Practices in Vendor Audits
  • Report Results of Audits
  • Identify Recommended Corrective Action
  • Document Vendor or Client Responses
  • Best Practices – Vendor and Client Audits
  • Review Independent Reporting
  • Review of material subcontractor relationships
  • Re-Test According to Issues Detected
  • Subcontractors – Monitoring your Vendors Vendor
  • Best Practices – Vendor and Client Audits
  • Your Vendor’s Management Program
  • Your Vendor should monitor
  • Review of material subcontractor relationships
  • Apply Servicer practices to sub-contractors through contractual arrangements
  • References for Third Party Oversight and Actions
  • Appendices
  • insideOperations: Vendor Management webinar transcript
  • insideOperations: Vendor Management webinar PowerPoint
  • Certificate of Completion

This report includes:

  1. Download link for the presentation
  2. The full slide deck.
  3. A certificate of completion for training purposes

Author: The Compliance Professionals Forum