Template

Download Free Gramm-Leach-Bliley Act Information Security Program Templates. This templates covers:

1. Risk Identification and Assessment.
The Institution intends, as part of the Program, to undertake to identify and assess external and internal risks to the security, confidentiality, and integrity of nonpublic financial information that could result in the unauthorized disclosure, misuse, alteration, destruction or other compromise of such information. In implementing the Program, the Program Officer will establish procedures for identifying and assessing such risks in each relevant area of the Institution's operations, including:

Download Free Information Technology Audit Plan Template. This Template help you to determine what is your annual IT Audit Plan and Strategy. This plan cover several aspects such as IT Management, Security & Access Control, Program Development Program Change and Computer Operation. Beside that it also covers both IT General Control and IT Application Control.

Download Free Business Continuity Management (BCM) Board and Senior Management Roles and Responsibility Templates

1. Business continuity management should be an integral part of the overall risk management programme of financial industry participants and financial authorities.

2. Business continuity management policies, standards and processes should be implemented on an enterprise-wide basis or, at a minimum, embedded in an organisation’s critical operations.

3. An organisation’s board and senior management are responsible for managing its business continuity effectively and for developing and endorsing appropriate policies to promote resilience to, and continuity in the event of, operational disruptions.

Download free Disaster Recovery Plan (DRP) Outline Templates. This templates consist of
I. Purpose Statement
II. Scope of Procedures
III. DRP Planning Assumptions
IV. Organizational Process for Developing, Approving, and Updating of the DRP

Download free Information Security Memorandum of Understanding (MOU) / Memorandum of Agreement (MOA). The purpose of this memorandum is to establish a management agreement between "Organization A" and "Organization B" regarding the development, management, operation, and security of a connection between "System A," owned by Organization A, and "System B," owned by Organization B. This agreement will govern the relationship between Organization A and Organization B, including designated managerial and technical staff, in the absence of a common management authority.

Security Incidents: