VicePresidentOCCBulletin2013-29SharedSLAsVRC1'sEvaluationQueueHIPAA14calendardaysSSAE18OCCCongaFormerlycriticalBlankErnstandYoungImpactscustomersbroadly enoughto threatenmarket share1,322Review thefile posted inthe VMOSharePointsiteA completedMaterialityAssessmentFinancialCrimes1,069NoRiskCouncilThird PartyProviderManagementPolicy21calendardays1bCubaPushthroughassignedprogramsPropertyMaintenanceBusinessProcessTiersThird PartyProviderManagementStandardValueAddedResellerAnyoneTPRSSmallTeamCoupa2020BCTier@bokf.comBankConfidentialData3/26/2019HighestInherent RiskofCompliance,BC, and SRMAnNDAIneffectiveMediumRegulatoryperspectiveincluded inannual criticalreporting100AnnualReportRiskRatingWhat isthe singletransactionlimit?VRCModeratelyLowCriticals and“WhollyOutsourcedDepartment”sOFACHitDecember2/14/2019latenoticelog-noreply@spfarm.bok.comYesThirdParty RiskSummaryAnalysisbased on thenature of theengagement3DaysRegenerateExemptAccess@WorkRequestHighDelegation1FISSupplierNameChangeCommitteeMonthly5.01FalseOverallcommentsNon-USHeadquartersor Non-USOperationsUpon acompletedFinancialCrimesreviewVRC1 –VRO –VRC2FDRemediationTrackerReportJuneHighest RiskRating of allactiveRelationshipsIf 1.01AND 1.17areapplicableAnyTier5VicePresidentOCCBulletin2013-29SharedSLAsVRC1'sEvaluationQueueHIPAA14calendardaysSSAE18OCCCongaFormerlycriticalBlankErnstandYoungImpactscustomersbroadly enoughto threatenmarket share1,322Review thefile posted inthe VMOSharePointsiteA completedMaterialityAssessmentFinancialCrimes1,069NoRiskCouncilThird PartyProviderManagementPolicy21calendardays1bCubaPushthroughassignedprogramsPropertyMaintenanceBusinessProcessTiersThird PartyProviderManagementStandardValueAddedResellerAnyoneTPRSSmallTeamCoupa2020BCTier@bokf.comBankConfidentialData3/26/2019HighestInherent RiskofCompliance,BC, and SRMAnNDAIneffectiveMediumRegulatoryperspectiveincluded inannual criticalreporting100AnnualReportRiskRatingWhat isthe singletransactionlimit?VRCModeratelyLowCriticals and“WhollyOutsourcedDepartment”sOFACHitDecember2/14/2019latenoticelog-noreply@spfarm.bok.comYesThirdParty RiskSummaryAnalysisbased on thenature of theengagement3DaysRegenerateExemptAccess@WorkRequestHighDelegation1FISSupplierNameChangeCommitteeMonthly5.01FalseOverallcommentsNon-USHeadquartersor Non-USOperationsUpon acompletedFinancialCrimesreviewVRC1 –VRO –VRC2FDRemediationTrackerReportJuneHighest RiskRating of allactiveRelationshipsIf 1.01AND 1.17areapplicableAnyTier5

Wild Card - Call List

(Print) Use this randomly generated list as your call list when playing the game. There is no need to say the BINGO column name. Place some kind of mark (like an X, a checkmark, a dot, tally mark, etc) on each cell as you announce it, to keep track. You can also cut out each item, place them in a bag and pull words from the bag.


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
  1. Vice President
  2. OCC Bulletin 2013-29
  3. Shared SLAs
  4. VRC1's Evaluation Queue
  5. HIPAA
  6. 14 calendar days
  7. SSAE18
  8. OCC
  9. Conga
  10. Formerly critical
  11. Blank
  12. Ernst and Young
  13. Impacts customers broadly enough to threaten market share
  14. 1,322
  15. Review the file posted in the VMO SharePoint site
  16. A completed Materiality Assessment
  17. Financial Crimes
  18. 1,069
  19. No
  20. Risk Council
  21. Third Party Provider Management Policy
  22. 21 calendar days
  23. 1b
  24. Cuba
  25. Push through assigned programs
  26. Property Maintenance
  27. Business Process Tiers
  28. Third Party Provider Management Standard
  29. Value Added Reseller
  30. Anyone
  31. TPRS Small Team
  32. Coupa
  33. 2020
  34. BCTier@bokf.com
  35. Bank Confidential Data
  36. 3/26/2019
  37. Highest Inherent Risk of Compliance, BC, and SRM
  38. An NDA
  39. Ineffective
  40. Medium
  41. Regulatory perspective included in annual critical reporting
  42. 100
  43. Annual Report
  44. Risk Rating
  45. What is the single transaction limit?
  46. VRC
  47. Moderately Low
  48. Criticals and “Wholly Outsourced Department”s
  49. OFAC Hit
  50. December
  51. 2/14/2019
  52. latenoticelog-noreply @spfarm.bok.com
  53. Yes
  54. Third Party Risk Summary
  55. Analysis based on the nature of the engagement
  56. 3 Days
  57. Regenerate
  58. Exempt
  59. Access@Work Request
  60. High
  61. Delegation
  62. 1
  63. FIS
  64. Supplier Name Change Committee
  65. Monthly
  66. 5.01
  67. False
  68. Overall comments
  69. Non-US Headquarters or Non-US Operations
  70. Upon a completed Financial Crimes review
  71. VRC1 – VRO – VRC2
  72. FD Remediation Tracker Report
  73. June
  74. Highest Risk Rating of all active Relationships
  75. If 1.01 AND 1.17 are applicable
  76. Any Tier
  77. 5