Program Overview
In this course, examiners will explore proven strategies that will enable them to efficiently evaluate application systems development processes and Internal Auditor/Compliance Officer involvement in a variety of business and technical environments, to provide appropriate response to bank management. Attendees will focus on what they need to know, what they need to do and when they need to do it with the understanding that examiners have a very small window of time and resources to perform reviews.
Key Objectives
Upon completion of this course, participants will be able to:
- Identify common application development risks;
- Explain how to mitigate risks associated with purchased, in-house, and web-based applications;
- Describe Waterfall and the rapid application development (RAD) techniques of Agile, Scrum, and DevOps; and
- Discuss all phases of development – design specifications, internal controls, testing, implementation and change control, training, software inventory control, and project management.
Instructional Format
Virtual classroom discussion and lectures via Microsoft Teams
Duration
Four days
Level
IntermediateTarget Audience
Risk Management Examiners with 12-15 months on the job experience conducting IT examinations and an expectation of examining in-house-developed applications in a financial institution or technology service provider. This course is open to appropriate staff of the FDIC and partner government regulatory agencies. This course is not open to the public or staff of private banks.
Prerequisites
Participant should have attended ITEC, Introduction to Security, and Introduction to Telecommunications and Networking
Pre-Course Assignment
None
Special Requirements
None
Post Course Feedback
None
Credits
This course may provide CPE/CEU credits; however, any credits offered will be handled by the vendor.
More Information
For more information concerning course content and administration, please e-mail cuelp@fdic.gov.