First Reference company logo

Inside Internal Controls

News and discussion on implementing risk management

machine cogs image

Uncategorized

Mitigate the risks associated with IT systems acquisition

Any organization which acquires IT systems must do so carefully. Among other reasons, systems may be costly, they may be critical to business operations, and they may create significant risks (for example a risk of security breaches). The following suggestions will help to mitigate some of the risks associated with IT systems acquisition:

 

, , , , , , , , , , ,

Three cybersecurity trends driving the Bank of Canada’s call for cybersecurity to be treated as a ‘public good’

As the level and sophistication of cyber-attacks continue to grow, there will be a mounting pressure on regulators to continue to develop coordinated, meaningful, mandatory minimum standards that are enforceable against all financial institutions and FMIs as well as their service providers.

 

, , , , , ,

Major changes to Canada’s export and technology transfer controls coming into force shortly

The Government of Canada has announced that a new version of the Guide to Canada’s Export Controls (the “Guide”) will come into effect on August 11, 2017. The Guide lists the goods and technology subject to export and technology transfer controls.

 

, , , , , , , ,

OSFI issues advisory on use of words “bank”, “banker”, “banking”

On June 30, 2017, the Office of the Superintendent of Financial Institutions (“OSFI”) issued Advisory 2017-01 (the “Advisory”) providing additional guidance on its interpretation of the limitations in the Bank Act (Canada) (the “Bank Act”) on the uses of the words “bank”, “banker” and “banking” and related exceptions.

 

, , ,

Explaining risk management in plain English

I have been saying for a while that one of the reasons for the disconnect between senior executives and risk practitioners is the latter’s language.

 

, , ,