OCCBulletin2013-29A completedMaterialityAssessmentCoupaDelegationAnnualReportSharedSLAsRiskCouncilNon-USHeadquartersor Non-USOperationsVRCFalseDecemberAccess@WorkRequest2/14/2019Upon acompletedFinancialCrimesreviewModeratelyLowYesBlank1b3/26/2019JuneVRC1 –VRO –VRC2BCTier@bokf.comFDRemediationTrackerReportHIPAABusinessProcessTiersOCCReview thefile posted inthe VMOSharePointsiteNoThird PartyProviderManagementPolicyErnstandYoungExempt1,322OverallcommentsHighOFACHitCriticals and“WhollyOutsourcedDepartment”sMediumRegulatoryperspectiveincluded inannual criticalreportingAnyone3DaysCongaFormerlycriticalCubalatenoticelog-noreply@spfarm.bok.comFISWhat isthe singletransactionlimit?SSAE18HighestInherent RiskofCompliance,BC, and SRMThirdParty RiskSummary14calendardaysImpactscustomersbroadly enoughto threatenmarket shareRiskRating5.01PropertyMaintenanceSupplierNameChangeCommittee1IneffectiveAnNDAVRC1'sEvaluationQueue21calendardaysRegenerate2020Analysisbased on thenature of theengagement5ValueAddedResellerPushthroughassignedprogramsFinancialCrimesBankConfidentialDataThird PartyProviderManagementStandard1,069If 1.01AND 1.17areapplicableTPRSSmallTeamHighest RiskRating of allactiveRelationshipsVicePresidentAnyTierMonthly100OCCBulletin2013-29A completedMaterialityAssessmentCoupaDelegationAnnualReportSharedSLAsRiskCouncilNon-USHeadquartersor Non-USOperationsVRCFalseDecemberAccess@WorkRequest2/14/2019Upon acompletedFinancialCrimesreviewModeratelyLowYesBlank1b3/26/2019JuneVRC1 –VRO –VRC2BCTier@bokf.comFDRemediationTrackerReportHIPAABusinessProcessTiersOCCReview thefile posted inthe VMOSharePointsiteNoThird PartyProviderManagementPolicyErnstandYoungExempt1,322OverallcommentsHighOFACHitCriticals and“WhollyOutsourcedDepartment”sMediumRegulatoryperspectiveincluded inannual criticalreportingAnyone3DaysCongaFormerlycriticalCubalatenoticelog-noreply@spfarm.bok.comFISWhat isthe singletransactionlimit?SSAE18HighestInherent RiskofCompliance,BC, and SRMThirdParty RiskSummary14calendardaysImpactscustomersbroadly enoughto threatenmarket shareRiskRating5.01PropertyMaintenanceSupplierNameChangeCommittee1IneffectiveAnNDAVRC1'sEvaluationQueue21calendardaysRegenerate2020Analysisbased on thenature of theengagement5ValueAddedResellerPushthroughassignedprogramsFinancialCrimesBankConfidentialDataThird PartyProviderManagementStandard1,069If 1.01AND 1.17areapplicableTPRSSmallTeamHighest RiskRating of allactiveRelationshipsVicePresidentAnyTierMonthly100

Wild Card - Call List

(Print) Use this randomly generated list as your call list when playing the game. There is no need to say the BINGO column name. Place some kind of mark (like an X, a checkmark, a dot, tally mark, etc) on each cell as you announce it, to keep track. You can also cut out each item, place them in a bag and pull words from the bag.


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
  1. OCC Bulletin 2013-29
  2. A completed Materiality Assessment
  3. Coupa
  4. Delegation
  5. Annual Report
  6. Shared SLAs
  7. Risk Council
  8. Non-US Headquarters or Non-US Operations
  9. VRC
  10. False
  11. December
  12. Access@Work Request
  13. 2/14/2019
  14. Upon a completed Financial Crimes review
  15. Moderately Low
  16. Yes
  17. Blank
  18. 1b
  19. 3/26/2019
  20. June
  21. VRC1 – VRO – VRC2
  22. BCTier@bokf.com
  23. FD Remediation Tracker Report
  24. HIPAA
  25. Business Process Tiers
  26. OCC
  27. Review the file posted in the VMO SharePoint site
  28. No
  29. Third Party Provider Management Policy
  30. Ernst and Young
  31. Exempt
  32. 1,322
  33. Overall comments
  34. High
  35. OFAC Hit
  36. Criticals and “Wholly Outsourced Department”s
  37. Medium
  38. Regulatory perspective included in annual critical reporting
  39. Anyone
  40. 3 Days
  41. Conga
  42. Formerly critical
  43. Cuba
  44. latenoticelog-noreply @spfarm.bok.com
  45. FIS
  46. What is the single transaction limit?
  47. SSAE18
  48. Highest Inherent Risk of Compliance, BC, and SRM
  49. Third Party Risk Summary
  50. 14 calendar days
  51. Impacts customers broadly enough to threaten market share
  52. Risk Rating
  53. 5.01
  54. Property Maintenance
  55. Supplier Name Change Committee
  56. 1
  57. Ineffective
  58. An NDA
  59. VRC1's Evaluation Queue
  60. 21 calendar days
  61. Regenerate
  62. 2020
  63. Analysis based on the nature of the engagement
  64. 5
  65. Value Added Reseller
  66. Push through assigned programs
  67. Financial Crimes
  68. Bank Confidential Data
  69. Third Party Provider Management Standard
  70. 1,069
  71. If 1.01 AND 1.17 are applicable
  72. TPRS Small Team
  73. Highest Risk Rating of all active Relationships
  74. Vice President
  75. Any Tier
  76. Monthly
  77. 100