ExemptCriticals and“WhollyOutsourcedDepartment”sValueAddedResellerHighestInherent RiskofCompliance,BC, and SRMErnstandYoungThirdParty RiskSummaryOCCYesBusinessProcessTiersMediumDecember14calendardaysBankConfidentialDataSupplierNameChangeCommitteePropertyMaintenanceNo1bIneffectiveAnnualReport3/26/20192020Access@WorkRequestThird PartyProviderManagementStandardlatenoticelog-noreply@spfarm.bok.com1,322ModeratelyLowMonthlyHighest RiskRating of allactiveRelationshipsCoupaTPRSSmallTeam2/14/2019Non-USHeadquartersor Non-USOperationsFISA completedMaterialityAssessment5.01OFACHit1,069SharedSLAsSSAE18CongaBlankReview thefile posted inthe VMOSharePointsiteCubaOverallcommentsHigh5PushthroughassignedprogramsAnNDAFalseVRC1 –VRO –VRC2RiskRatingAnyTier1RiskCouncil21calendardaysVicePresidentThird PartyProviderManagementPolicyIf 1.01AND 1.17areapplicableRegulatoryperspectiveincluded inannual criticalreportingFDRemediationTrackerReport1003DaysOCCBulletin2013-29DelegationJuneRegenerateWhat isthe singletransactionlimit?Upon acompletedFinancialCrimesreviewFormerlycriticalAnalysisbased on thenature of theengagementImpactscustomersbroadly enoughto threatenmarket shareAnyoneHIPAAVRC1'sEvaluationQueueVRCFinancialCrimesBCTier@bokf.comExemptCriticals and“WhollyOutsourcedDepartment”sValueAddedResellerHighestInherent RiskofCompliance,BC, and SRMErnstandYoungThirdParty RiskSummaryOCCYesBusinessProcessTiersMediumDecember14calendardaysBankConfidentialDataSupplierNameChangeCommitteePropertyMaintenanceNo1bIneffectiveAnnualReport3/26/20192020Access@WorkRequestThird PartyProviderManagementStandardlatenoticelog-noreply@spfarm.bok.com1,322ModeratelyLowMonthlyHighest RiskRating of allactiveRelationshipsCoupaTPRSSmallTeam2/14/2019Non-USHeadquartersor Non-USOperationsFISA completedMaterialityAssessment5.01OFACHit1,069SharedSLAsSSAE18CongaBlankReview thefile posted inthe VMOSharePointsiteCubaOverallcommentsHigh5PushthroughassignedprogramsAnNDAFalseVRC1 –VRO –VRC2RiskRatingAnyTier1RiskCouncil21calendardaysVicePresidentThird PartyProviderManagementPolicyIf 1.01AND 1.17areapplicableRegulatoryperspectiveincluded inannual criticalreportingFDRemediationTrackerReport1003DaysOCCBulletin2013-29DelegationJuneRegenerateWhat isthe singletransactionlimit?Upon acompletedFinancialCrimesreviewFormerlycriticalAnalysisbased on thenature of theengagementImpactscustomersbroadly enoughto threatenmarket shareAnyoneHIPAAVRC1'sEvaluationQueueVRCFinancialCrimesBCTier@bokf.com

Wild Card - Call List

(Print) Use this randomly generated list as your call list when playing the game. There is no need to say the BINGO column name. Place some kind of mark (like an X, a checkmark, a dot, tally mark, etc) on each cell as you announce it, to keep track. You can also cut out each item, place them in a bag and pull words from the bag.


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
  1. Exempt
  2. Criticals and “Wholly Outsourced Department”s
  3. Value Added Reseller
  4. Highest Inherent Risk of Compliance, BC, and SRM
  5. Ernst and Young
  6. Third Party Risk Summary
  7. OCC
  8. Yes
  9. Business Process Tiers
  10. Medium
  11. December
  12. 14 calendar days
  13. Bank Confidential Data
  14. Supplier Name Change Committee
  15. Property Maintenance
  16. No
  17. 1b
  18. Ineffective
  19. Annual Report
  20. 3/26/2019
  21. 2020
  22. Access@Work Request
  23. Third Party Provider Management Standard
  24. latenoticelog-noreply @spfarm.bok.com
  25. 1,322
  26. Moderately Low
  27. Monthly
  28. Highest Risk Rating of all active Relationships
  29. Coupa
  30. TPRS Small Team
  31. 2/14/2019
  32. Non-US Headquarters or Non-US Operations
  33. FIS
  34. A completed Materiality Assessment
  35. 5.01
  36. OFAC Hit
  37. 1,069
  38. Shared SLAs
  39. SSAE18
  40. Conga
  41. Blank
  42. Review the file posted in the VMO SharePoint site
  43. Cuba
  44. Overall comments
  45. High
  46. 5
  47. Push through assigned programs
  48. An NDA
  49. False
  50. VRC1 – VRO – VRC2
  51. Risk Rating
  52. Any Tier
  53. 1
  54. Risk Council
  55. 21 calendar days
  56. Vice President
  57. Third Party Provider Management Policy
  58. If 1.01 AND 1.17 are applicable
  59. Regulatory perspective included in annual critical reporting
  60. FD Remediation Tracker Report
  61. 100
  62. 3 Days
  63. OCC Bulletin 2013-29
  64. Delegation
  65. June
  66. Regenerate
  67. What is the single transaction limit?
  68. Upon a completed Financial Crimes review
  69. Formerly critical
  70. Analysis based on the nature of the engagement
  71. Impacts customers broadly enough to threaten market share
  72. Anyone
  73. HIPAA
  74. VRC1's Evaluation Queue
  75. VRC
  76. Financial Crimes
  77. BCTier@bokf.com