Does anyone have a sample form of what is reported to the Board for 501B annual report?

What I covered in my annual report last year was 6 things:
1. The Risk Assessment we had developed regarding Customer Info Security.
2. An overview of the Staff training that was conducted throughout the year.
3. Internal audit results from our external auditor on our CIS efforts.
4. Any security measures that we have in place to help protect CI.
5. An overview of our vendor mgmt. policy
6. An overview of the Banks Disaster Recovery Team and planning process.