Regulatory Resources by IT Booklet
Regulatory
resources that are currently available through this InfoBase can
be accessed by selecting a link button from the table.
Non-regulatory resources that are currently available through
this InfoBase can be accessed from the bottom of this page.
Non-regulatory Resources NOTE: These resources are provided to assist in your research and continuing professional education. They are not endorsed, certified, or approved by the FFIEC or its member agencies. |
Business Continuity Planning | |||
Type |
Source |
Title/Source |
Date |
Publication |
NIST |
Contingency Planning Guide for Information Technology Systems: Recommendations of the National Institute of Standards and Technology, Special Publication 800-34 |
June
2002 |
Information Security Booklet | |||
Type |
Source |
Title/Source |
Date |
Website |
ISACA |
Control Objectives for Information Technology Website at www.isaca.org (The Information Systems Audit and Control Association & Foundation) |
N/A |
Publication |
ISO |
Code of Practice for Information Security Management (ISO /IEC 17799) (available at The International Organization for Standards (ISO ) Information Technology Website, www.iso.org/iso/en/CatalogueListPage.CatalogueList) |
September 2001 |
Publication |
ISO |
Information Security -- Security Techniques—Evaluation Criteria for IT Security (ISO /IEC 15408) (available at The International Organization for Standards (ISO) Information Technology Website, www.iso.org/iso/en/CatalogueListPage.CatalogueList) |
December 1999 |
Publication |
NIST |
Guidelines on Firewalls and Firewall Policy, Special Publication 800-41 |
January 2002 |
Publication |
NIST |
Risk Management Guide for Information Technology Systems, Special Publication 800-30 |
October 2001 |
Website |
NIST |
The National Institute of Standards and Technology (NIST ) Website at www.nist.gov |
N/A |
Management | |||
Type |
Source |
Title/Source |
Date |
Website |
Basel Committee on Banking Supervision |
Sound Practices for the Management and Supervision of Operational Risk |
February 2003 |
Website |
IT Governance Institute |
July 2000 |
|
Website |
ISACA |
N/A |
|
Retail Payment Systems | |||
Type |
Source |
Title/Source |
Date |
Publication | FRB |
March 2003 |
|
Publication | FRB |
2003 |
Resources |