Vendor Security Review

Updated: Jul 23


Our client, a large regional bank, needed to do a comprehensive security and controls review across their vendor group. The bank’s compliance organization was heavily tasked keeping up with all the regulatory changes and needed a firm to come in and develop a plan to get the vendor reviews current.

Our Solution


Orion Solutions provided an IT security consultant with extensive experience in the banking industry, and particular experience in IT vendor management. The consultant developed a multi-pronged approach for the project. The first phase included a review of SOC reports and determination of the impact of identified weaknesses. For the second phase, our consultant went to a variety of hacker sites where information on hacked companies is shared. The consultant learned that the majority of our client’s vendors had been hacked, and many of the hacked services had the potential to impact our client. In many cases these vendors had not communicated the exposure.



Client Outcome


Orion Solutions completed the evaluation of each IT vendor and got the client current with all their key relationships. In addition, we built a report that ranked the vendors by the degree of exposure risk and the extent of identified hacking activity to allow management to make informed decisions about which vendors should remain and which required remediation to stay with the client.


Recent Posts

See All

PMO – Divestiture Transition Team

Our client, a captive finance company for one of the largest Automotive OEMs in the world, was divesting a large business unit and wanted to assemble a Transition Management Office to operate within t

Project Manager

Our client, a captive finance company for one of the largest Automotive OEMs in the world, was implementing a new core system module for their commercial business and needed project management support

SOX IT Compliance

Our client, a publicly traded Real Estate Investment Trust (REIT), needed a co-souring solution to comply with SOX IT requirements. Our Solution Orion Solutions provided an IT audit consultant who was

Work With Orion Solutions

Orion Solutions is ready to help with your unique situation! Our industry experts will build a customized solution and bring the best talent to the effort. 

work-with-orion-post.jpg