IT Examiner School - Oct 2025

10/3/2025

Internal Use Only

Management Responsibilities

Control risk activities

Oversee day-to-day IT operations and manage vendor relationships

Develop, implement and enforce applicable policies, procedures, and other mitigating controls

Provide regular reporting to Board and executive management

Internal Use Only

Board & senior management shared responsibilities:

• Evaluate & agree upon IT goals and objectives • Determine if IT goals & objectives are being met • Assess the effectiveness and efficiency of current IT programs and activities • Develop budgets to maintain ongoing operations and meet IT strategic priorities

4