Risk Management

Download Free Internet Banking Risk Register Template

Internet Banking Specific Risk
- Strategic risk
- Transaction risk
- Compliance risk
- Reputation risk
- Information security risk
- Credit risk
- Interest rate risk
- Liquidity risk
- Price risk
- Foreign exchange risk

1. BASIC RISK INFORMATION
- Risk Number

Risk Management Roles and Responsibility according to Institute of Risk Management (IRM). This job description templates can be used to design the Risk Management and Internal Audit functions.

Role of the Board
- The Board has responsibility for determining the strategic direction of the organisation and for creating the environment and the structures for risk management to operate effectively.
- The nature and extent of downside risks acceptable for the company to bear within its particular business
- The likelihood of such risks becoming a reality
- How unacceptable risks should be managed
- The company’s ability to minimise the probability and impact on the business
- The costs and benefits of the risk and control activity undertaken
- The effectiveness of the risk management process
- The risk implications of board decisions

Nevada Privacy Law requiring a company that transfers customer personal information outside of its secure system through an electronic transmission to use encryption. This law is effective since October 1, 2008 and after several ammendments will be effective in January 1, 2010.

Encryption requirements:
A company that does not accept a payment card (a credit card, charge card, debit card or similar card) in connection with a sale of goods or services must use encryption

1. To transfer any personal information through an electronic, nonvoice transmission (other than a facsimile) outside the company's secure system or

Massachusetts Privacy Law Security Standards:
- Written information security program
- Passwords, encryption for laptops
- Risk assessments
- Security policies around records retention
- Policies and procedures to prevent terminated employees from gaining access
- Physical access control policies and procedures
- Security incident response policies
- Monitoring for unauthorized access
- Encryption of PII on laptops and other portable devices
- Encryption of PII data in transmission

Effective: 1 January 2009

Download Free Service Level Agreement Contract for Internet Protocol Virtual Private Network Dedicated

Service Level Agreement
Network Availability Guarantee
The Network Availability Guarantee will apply to each dedicated Internet access connection in the contiguous United States ordered as part of IP VPN service, provided that references in that Network Availability Guarantee to credits calculated on the basis of a monthly fee shall mean the monthly fee for the dedicated Internet access connection for which that Network Availability Guarantee was not met—not the entire monthly fee for the IP VPN service.

Network Latency Guarantee
The U.S. Network Latency Guarantee will apply to each dedicated Internet access connection in the contiguous United States ordered as part of IP VPN service, provided that references in that Network Latency Guarantee to credits calculated on the basis of a monthly fee shall mean the monthly fee for the dedicated Internet access connection for which that Network Latency Guarantee was not met, not the entire monthly fee for the IP VPN service.

Outage Reporting Guarantee
The Outage Reporting Guarantee will apply to each dedicated Internet access connection in the contiguous United States ordered as part of the IP VPN service, provided that references in that Outage Reporting Guarantee to credits calculated on the basis of a monthly fee shall mean the monthly fee for the dedicated Internet access connection for which that Outage Reporting Guarantee was not met, not the entire monthly fee for the IP VPN service.