(270) 506-5140 CONTACT US
Login

Venminder Blog

Dec 31, 1969 by

Desiree Ericksen

Desiree Ericksen
Desiree is a self-motivated financial services industry leader with 14 years’ experience through nearly all financial institution operations, from teller to Vice President – IT/Security Officer. Now providing detailed analysis to financial services companies, she is able to apply years of direct subject matter knowledge, analyzing inherent risk of vendors and their subservice providers. She earned a Bachelor’s degree in Business Information Systems and is a Certified Information Systems Security Professional (CISSP). Through her experience in regulatory, internal and external audits, she has first-hand experience in what challenges financial services organizations are facing in third party risk management.
Find me on:

Recent Posts

SOC Reports

SAS 70, SSAE 18 and now the Vendor SOC 2 Alignment with COSO…Oh My!

Nov 18, 2019

Just as the world is constantly changing, so is the world of vendor management. Thankfully, the world of vendor management is changing to improve vendor security and oversight for the better via [...]

Read More

SOC Reports

How to Compensate Vendor Controls

Oct 16, 2019

In SOC audits, a compensating vendor control is the process of satisfying a security measure requirement that has been determined too difficult, impractical or unattainable at that particular time [...]

Read More

SOC Reports

I’ve Never Dealt with a Vendor SOC Report: Where Do I Begin?

Sep 25, 2019

The importance of a System and Organization Controls (SOC) report in third party risk management cannot be stressed enough. A SOC report is prepared by an independent auditor, so you can be [...]

Read More

SOC Reports

Risk of Not Reviewing Your Vendor's SOC Report

May 15, 2019

Reviewing each vendor’s SOC (System and Organization Controls) report is a critical due diligence step and is vital in the initial vendor selection stage and the ongoing monitoring stage. SOC [...]

Read More

SOC Reports

Red Flags in Critical Vendor SOC Reports

Oct 17, 2018

When you begin your initial due diligence or regular monitoring of a vendor, one of the first things to do is to request all their SOC reports. You also need to ask for the SOC reports for any [...]

Read More

SOC Reports

Why and When You Look at a Fourth Party’s SOC Report

Aug 29, 2018

Some say that your business is only as good as your employees. The same can be said for your vendors, as they are only as good as their vendor (your fourth party). A fourth party vendor is your [...]

Read More

Written by

Follow
Subscribe--Bg.jpg

Subscribe to the Venminder Blog