IT Examiner School - Oct 2023
Internal Use Only
IT Management Component Rating – Key Considerations Level and quality of oversight Reporting Policies and Procedures Compliance Succession Planning
Vendor Oversight Risk Assessments
37
Internal Use Only
Management Module Conclusions • Management has significant responsibilities in overseeing IT activities • Poor oversight could cause operational, financial, and reputational risk • Could result in significant impact to entity • Statutes & Guidance • Establish some requirements, push institutions to implement best practices • IT findings usually occur because: • Management didn’t adequately fulfill their duties and responsibilities
38
Made with FlippingBook - professional solution for displaying marketing and sales documents online