IT Examiner School

Vendor Management • Vendor management policies apply to the software acquisition process • Organizations should establish vendor selection criteria and review potential vendors' financial strength, support levels, security controls, etc., prior to obtaining products or services. • Additionally, management reviews contracts and licensing agreements to ensure the rights and responsibilities of each party are clear and equitable. • The bank is responsible for ensuring that security, reliability, and functionality are already built into the product before it is acquired.

Feasibility Study • Business objectives; • Technology objectives;

• Functional (business) requirements; • Security requirements; • Internal control requirements; • Reliability requirements; • Documentation requirements; • Performance requirements; • Expandability requirements; • Network requirements; • System interface requirements

more…