Professional Documents
Culture Documents
Priam Kasturiratna
2nd National Conference on Information Systems Audit,Control and Governance 23 & 24 March 2006 Colombo Sri Lanka
. Next
6. Exchange Risk
Asset/Liability values affected by Inter-currency transactions via Internet Banking due to Exchange Rate Fluctuations
8. Liquidity Risk
1. Strategic Risk 2. Legal & Regulatory Compliance Risk 3. Transactional Risk 4. Marketing & Reputational Risk 5. Credit Risk 6. Exchange Risk 7. Interest Rate Risk 8. Liquidity Risk 9. Information Security Risk
. Now
You are facing a RISK
First Identify Vulnerabilities, and the Threats Assess Risk Take Countermeasures to Treat the Risk Asset valuation Countermeasures/ Threat Assessment
Risk Treatment Vulnerability Assessment Risk Assessment
Control Evaluation
Action Plan
Residual Risk
Source : IT Governance Institute
Obtain Indemnity Agreements from Service Providers (outsourced) Risk Transfer Result
New customers can open Deposit Accounts without visiting a branch Inter-currency transfers facilitated 24X7
Password Management
Minimum Length Combination of numeric,alpha,~!*(@#$%^ Validity period & forced change on expiry
Inquiry Only Users Txn. Entry Profile & Auth. Profile Business Requirement Specific Profiles
Users with only Trade Finance Options Users with access to a specific Account/s
Operational & Backup procedures Help Desk Services Management Risk Management
Sign-on/off habits
Intended Use of Services in intended manner Prompt Notification of errors or irregularities to Bank
Risk Management in Internet Banking A Summary Identified what is todays Internet Banking How various Risk Elements adversely affect Internet Banking Discussed traditional and new Risk Management Techniques available to Banks & Customers for Internet Banking Risk Mitigation
Discussion
??????
Thank you