Increasing use of technology in banks has made dealings easier for customers and speeded up the operations. Meanwhile, there is a corresponding increase of risks in operations. Every bank should conduct information systems audit (isa) to minimize such risks. Following rbis guidelines, a number of banks have put in place security policies, which among other things will determine the scope and periodicity of isa. A number of banks prefer doing isa internally. Even where banks engage third party is auditors, it may be preferable to have additional internal audit to tackle the issue of objective auditing. In order to conduct such internal auditing, it should be ensured that internal is auditors are not part of it team and have appropriate professional expertise by way of qualification and training. This will call for technically qualified personnel in the banking set-up and periodical skill building. Not only the auditors - both internal and external - but bankers in general should also be aware of the concerns of audit and initiate appropriate preventive measures. Middle and senior level officers working in banks should necessarily have a good appreciation of issues involved. With these objectives and requirements, the institute thought to publish a book which will be useful for: (I) the students enrolled for ceisb examination of the institute and (ii) persons desiring to acquire, upgrade the knowledge on information technology of banks. The book is divided into seven modules consisting of (I) technology in banks (ii) technology - system, development, process, implementation (... See more
Increasing use of technology in banks has made dealings easier for customers and speeded up the operations. Meanwhile, there is a corresponding increase of risks in operations. Every bank should conduct information systems audit (isa) to minimize such risks. Following rbis guidelines, a number of banks have put in place security policies, which among other things will determine the scope and periodicity of isa. A number of banks prefer doing isa internally. Even where banks engage third party is auditors, it may be preferable to have additional internal audit to tackle the issue of objective auditing. In order to conduct such internal auditing, it should be ensured that internal is auditors are not part of it team and have appropriate professional expertise by way of qualification and training. This will call for technically qualified personnel in the banking set-up and periodical skill building. Not only the auditors - both internal and external - but bankers in general should also be aware of the concerns of audit and initiate appropriate preventive measures. Middle and senior level officers working in banks should necessarily have a good appreciation of issues involved. With these objectives and requirements, the institute thought to publish a book which will be useful for: (I) the students enrolled for ceisb examination of the institute and (ii) persons desiring to acquire, upgrade the knowledge on information technology of banks. The book is divided into seven modules consisting of (I) technology in banks (ii) technology - system, development, process, implementation (iii) continuity of business (iv) overview of legal framework(v) security and controls standards in banking (vi) security policies, procedures and controls (vii) information security & is audit.