IS/IT Risk Management in Banking Industry

Abstract

The paper makes a survey of current trends in business risk managementfocusing on IS/IT risk management in financial institutions. Special attention is paid to frameworks and regulations available for both financial and non-financial risk management and their relation to IS/IT risk management. The relationship and common and differentfeatures between IS/IT risk management and operational risk management are discussed on the basis of a short introduction to the specifics of risk management in financial institutions.The advantages and challenges of those different frameworks are summarized together with the possibility to incorporate some IT/IS risk management tools and methods into operational risk management in practice. Basel II is the main framework covering the area of operational risk management, therefore the paper focuses on the assessment of the impact and integration of the Basel II framework with IS/IT risk management ones.