Updated FFIEC Management Booklet Part of IT Examination Handbook Series
November 23, 2015 / Source: FFIEC
The Federal Financial Institutions Examination Council (FFIEC) has issued a revised “Management” booklet that provides guidance to assist examiners in evaluating the information technology (IT) governance at financial institutions and service providers. The booklet is part of the IT Examination Handbook series.
- The revised Management booklet outlines the principles of overall governance and, more specifically, IT governance.
- The revised booklet delineates the stages of the IT risk-management process, including risk identification, measurement, mitigation, monitoring, and reporting.
- The revised booklet incorporates cybersecurity concepts as part of IT risk management.
An electronic version of the booklet, as well as an FFIEC press release, is available at http://www.ffiec.gov/press.htm.