FFIEC
Information Technology
Examination Handbook
Master Table of Contents
Table of Contents Listed by Booklets
Table of Contents Listed by Topics
Booklets
Audit
Business Continuity Planning
INTRODUCTION
BOARD AND SENIOR MANAGEMENT RESPONSIBILITIES
BUSINESS CONTINUITY PLANNING PROCESS
BUSINESS IMPACT ANALYSIS
RISK ASSESSMENT
RISK MANAGEMENT
Business Continuity Plan Development
Assumptions
Internal and External Components
Mitigation Strategies
RISK MONITORING AND TESTING
Principles Of The Business Continuity Testing Program
Roles and Responsibilities
Testing Policy
Execution, Evaluation, Independent Assessment, and Reporting of Test Results
Updating Business Continuity Plan and Test Programn
OTHER POLICIES, STANDARDS AND PROCESSES
Security Standards
Project Management
Change Control Policies
Data Synchronization Processes
Crisis Management
Incident Response
Remote Access
Employee Training
Notification Standards
Insurance
Government and Community
SUMMARY
APPENDIX A: EXAMINATION PROCEDURES
APPENDIX B: GLOSSARY
APPENDIX C: INTERNAL AND EXTERNAL THREATS
APPENDIX D: PANDEMIC PLANNING
APPENDIX E: INTERDEPENDENCIES
APPENDIX F: BUSINESS IMPACT ANALYSIS PROCESS
APPENDIX G: BUSINESS CONTINUITY PLAN COMPONENTS
APPENDIX H: TESTING PROGRAM - GOVERNANCE AND ATTRIBUTES
APPENDIX I: LAWS, REGULATIONS, AND GUIDANCE
Development and Acquisition
E-Banking
Information Security
Management
Operations
Outsourcing Technology Services
Retail Payment Systems
Supervision of Technology Service Providers
Wholesale Payment Systems
Home
IT Booklets
Glossary
Presentations
Resources
