Time to re-think the role of the network administrator?

Posted by Tom on May 31, 2011 · Leave a Comment

Traditionally, the network administrator needed to operate at “ground-level”. Network maintenance was highly specialized and problematic, requiring a constant hands-on approach. And in the very early days (when the Guru …
Read the rest of the article

Filed under Hot Topics · Tagged with IT Steering, Network Administrator, strategic planning, Strategic Risk

The IT Strategic Plan – Why, Who, & How

Posted by Tom on May 17, 2011 · Leave a Comment

One of the most common examination findings recently (particularly with the FDIC) has been the lack of an IT Strategic Plan. I’m not sure why the focus lately (perhaps the …
Read the rest of the article

Filed under From the Field · Tagged with CAMELS Ratings, Examination, FFIEC, IT Examination Handbooks, IT Steering, IT Strategic Plan

Using Technology to Drive Compliance

Posted by Tom on May 11, 2011 · Leave a Comment

In the past year to year and a half, nearly all of the IT examination findings I’ve seen have in the broad category of “documentation”, or more specifically, lack thereof. …
Read the rest of the article

Filed under From the Field · Tagged with Audit, compliance, Examination, IT Steering

A Recurring Theme in FDIC Consent Orders

Posted by Tom on April 20, 2011 · Leave a Comment

If you look at any of the recent FDIC Consent Orders, you will quickly see a common theme. I randomly pulled a few off the top of the list, …
Read the rest of the article

Filed under Hot Topics · Tagged with consent order, Examination, FDIC, IT Steering, Strategic Risk

“Concentration of duties”

Posted by Tom on April 8, 2011 · Leave a Comment

It is not unusual for a community financial institution with limited personnel to have the Information Security Officer (ISO) act as a backup network administrator. In fact, this is a …
Read the rest of the article

Filed under From the Field · Tagged with Examination, FDIC Information Technology Officer’s Questionnaire, FFIEC, IT Steering

The Control Self-Assessment (CSA)

Posted by Tom on April 4, 2011 · 8 Comments

If there was a process that was mentioned 43 times in 7 of the 12 FFIEC IT Examination Handbooks, (including 12 times in the Information Security Handbook alone!), would you …
Read the rest of the article

Filed under From the Field · Tagged with Audit, CAMELS Ratings, Control Self-Assessment, Examination, FFIEC, IT Examination Handbooks, IT Steering

Top 5 Compliance Trends for 2011 – Part 2

Posted by Tom on January 17, 2011 · Leave a Comment

A recent survey of auditors and examiners asked:

During the past year, in which category would you say MOST of your IT audit/exam findings occurred?

Filed under Hot Topics · Tagged with Audit, Examination, IT Steering

The IT Steering Committee – Should or Must?

Posted by Tom on December 16, 2010 · 4 Comments

At a recent user group meeting of one of the major core vendors for community banks, I asked the question ‘how many of you use an IT or Tech Steering …
Read the rest of the article

Filed under From the Field · Tagged with Audit, Examination, FDIC Information Technology Officer’s Questionnaire, FFIEC, IT Steering

Stay Informed

Categories

Useful Websites