FFIEC Issues New IT Management Booklet

Katten Muchin Rosenman LLP
Contact
LinkedIn
Facebook
X
Send
Embed

The Federal Financial Institutions Examination Council (FFIEC) members on November 10 issued a revised Management booklet, which is part of the FFIEC Information Technology Examination Handbook (IT Handbook). The Management booklet, including the examination procedures, has been substantially revised. The booklet outlines the principles of sound governance and, more specifically, information technology (IT) governance. The booklet explains how IT risk management relates to enterprise-wide risk management and governance.

The updated examination procedures assist examiners in evaluating the following areas:

  • IT governance as part of overall governance in financial institutions.
  • IT risk management as part of enterprise-wide risk management in financial institutions.

Other relevant changes include:

  • Incorporation of cybersecurity concepts as part of information security.
  • Incorporation of management-related concepts from other booklets of the IT Handbook.
  • Augmentation and further delineation of the stages of the IT risk management process, including risk identification, measurement, mitigation, monitoring and reporting.

The IT Handbook is available here.

Send Print Report

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Katten Muchin Rosenman LLP | Attorney Advertising

Written by:

Katten Muchin Rosenman LLP
Katten Muchin Rosenman LLP
Contact
more
less

Katten Muchin Rosenman LLP on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign Up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide