A focused course, tailored for you
The Bank Security Manager's FFIEC and OCC Evidence Playbook
Walk into the next FFIEC IT exam with control evidence, third-party assurance, and incident response artefacts already mapped to the booklet questions examiners ask.
The FFIEC IT exam request list lands, the booklet questions don't line up to how your control inventory is structured, and you are the person who has to translate.
Includes a hand-built implementation playbook delivered alongside course access, generated for your specific situation.
Why this course
A bank security manager sits between the SOC, the IAM team, vendor risk, the BCP owner, and the audit liaison. When the FFIEC examiner or the OCC heightened-standards review opens, the request comes back as booklet questions, not as the control IDs in your GRC tool. The Information Security booklet asks about authentication strength and privileged access in a specific shape. The Architecture booklet asks about segmentation and change management in another shape. The BCM booklet asks about resilience testing and recovery time in a third shape. Internal audit asks for control narratives, ERM asks for residual risk, and the board pack asks for a heat map. Same evidence, four different translations, and you are doing all four under deadline. The friction isn't a missing control. It's the translation work, and it lands on you every cycle.
What you walk away with
- A control-to-booklet-question crosswalk for FFIEC Information Security, Architecture, and BCM booklets, prefilled with the artefact and the owner.
- A third-party concentration view that answers the OCC's heightened-standards question on critical service provider dependency in one page.
- A resilience-testing summary template that closes the loop from scenario to RTO to recovery evidence in the language the BCM booklet uses.
- An incident severity and notification matrix aligned to GLBA Safeguards Rule notification thresholds and the OCC's prompt notification expectation.
- A SOX IT general controls and GLBA Safeguards overlay so the same control evidence answers both the financial audit and the security supervision request.
The 12 modules
How this addresses your situation
Specific modules that map to what you said you are dealing with.
What you get with this course
- Twelve written modules with worked examples drawn from US bank supervisory practice.
- Downloadable templates: FFIEC booklet question map, OCC concentration view, GLBA notification matrix, BCM resilience summary, SOX ITGC overlay.
- The hand-built implementation playbook tuned to a bank security manager covering a multi-line-of-business book.
- Thirty day money-back guarantee.
What you will have in hand by Day 1, Week 1, Month 1
Within 24 hours your account in the learning environment is provisioned and the tailored implementation playbook is delivered alongside it.
Module 1 through module 4 are the first week of work. The crosswalk artefact is finished by end of week one.
Modules 5 through 8 are the second and third week, focused on third-party, resilience, incident response, and vendor assurance artefacts.
Modules 9 through 12 are the fourth and fifth week, focused on overlay, board translation, and the continuous evidence library.
Before and after
Every exam cycle, the security manager rebuilds the evidence library under deadline, translates the same controls into three different supervisory frames, and absorbs the request-list firefight as a personal calendar problem.
The control inventory, the third-party view, the resilience summary, the incident matrix, and the SOX-GLBA overlay are maintained between cycles. The request list maps to a maintained artefact set. The security manager runs the exam, instead of the exam running the security manager.
What happens if you do not address this
Without the translation layer, the next FFIEC IT exam or OCC review eats four weeks of the security manager's calendar, the supervisory feedback shows up as a finding that lands on the board pack, and the next cycle starts from the same standing position rather than building forward.
Who it is for
Security manager at a US national or regional bank, accountable for the security control story across multiple business lines (retail, commercial, wealth, treasury services). Reports into a CISO or Information Security director. Owns or coordinates the response to FFIEC IT examiners, OCC heightened-standards reviewers, internal audit, and ERM. Has SOC, IAM, vendor risk, and BCP owners as peers or direct reports. Familiar with NIST CSF, FFIEC booklets, OCC guidance, SOX IT general controls, and the GLBA Safeguards Rule.
How it arrives
Text-based course in the Art of Service learning environment, plus downloadable templates and worked examples for every module, plus the hand-built implementation playbook delivered alongside course access.
Time investment. Roughly five to seven hours per module, spread across a five-week working schedule, with the templates designed so the security manager applies the module to a live artefact rather than holding the learning separately from the work.
Why $199 is the right number
Big4 advisory engagements covering FFIEC exam preparation run into six figures and leave the bank with a deck rather than a maintained artefact set. Generic GRC tooling holds the controls but doesn't produce the supervisory translation. Free FFIEC IT Examination Handbook material is canonical but doesn't carry the worked artefacts a security manager needs to respond inside the deadline.
FAQ
30-day money-back guarantee. If after a week of working through the materials this is not what you needed, reply to the receipt email and a full refund is processed. No questions, no forms.
Within 24 hours your account in the learning environment is provisioned and the tailored implementation playbook is delivered alongside it.