Are there significant changes to the booklet?
What does it cost to have a cyber security firm test a bank's computer security to find out where the bank is vulnerable to outside hackers? Who does this work?
We are trying to assess the risk posed by offering remote deposit capture. Can you point us to any regulatory issuances that might be helpful? What is the associated risk with offering remote deposit capture in a US Territory…for instance the US Virgin Islands?
What individual risk assessments is a bank expected to perform? How do the individual risk assessments fit together with an "enterprise risk assessment"?
What is the requirement for training employees on Information Technology - Use and Monitoring...including computer access, email do's and don'ts, etc?
We use outside vendors to do our IT penetration testing. Is it written anywhere how often this should be done? Can we use the same vendor each time?
I need resources to assist in writing a policy for ACH, Networking and End User computing. Do you know of any sites or resources available?
On July 30, 2002 the Sarbanes-Oxley Act (SOX) was signed into law.
While information technology is not usually the responsibility of the compliance manager, there are certain IT functions that the compliance manager should make sure are in place.