To expand their services and product offerings, credit unions are increasingly outsourcing functions and programs through collaboration with third parties.  Third party relationships are essential and can enable credit unions to become their members’ primary financial institution.  That said, not managing and controlling these relationships can result in unanticipated costs, legal disputes, and financial loss.
The regulators goal is to ensure credit unions clearly understand the risk they are assuming and balance and control these risks considering the credit union’s safety and members’ best interests.

The vendor due diligence objectives for credit unions are to:

  • Ensure that outsourced relationships are initiated based on a sound business case and comprehensive due diligence in the selection process.
  • Ensure that outsourced relationships are effectively managed by providing for consistent, risk focused controls and processes.
  • Ensure that the credit union is in compliance with regulatory guidance and requirements pertaining to outsourced relationships.

Credit Unions can achieve these objectives by maintaining an active vendor management oversight function.  Specific practices should be supported by guidelines and checklists that ensure that vendor performance is monitored, contractual requirements are in place and regulatory requirements are met.

Herein is an overview of the key areas when developing a vendor due diligence program in your credit union:

  • Identifying key vendors and their risk levels;
  • Gathering information for due diligence reviews;
  • Conducting initial and ongoing reviews;
  • Tracking and documenting; and
  • An in-house  compared to an outsourced programs.

This blog entry you have just read was written by Edward Lis who is a former senior executive of three different credit unions. If you enjoyed this article I encourage you to learn more about Edward by visiting or by calling 518-420-2108.