Regulatoryperspectiveincluded inannual criticalreportingHighFDRemediationTrackerReportValueAddedReseller21calendardaysVRC1 –VRO –VRC2Third PartyProviderManagementPolicy2020AnnualReportIf 1.01AND 1.17areapplicableBusinessProcessTiersAnyoneImpactscustomersbroadly enoughto threatenmarket shareOverallcommentsFormerlycriticalPropertyMaintenanceDelegationModeratelyLowWhat isthe singletransactionlimit?ExemptSharedSLAsFinancialCrimes2/14/2019Review thefile posted inthe VMOSharePointsiteTPRSSmallTeamAnyTierCongaYes1ErnstandYoungJuneRiskCouncillatenoticelog-noreply@spfarm.bok.comNon-USHeadquartersor Non-USOperations5.01NoVRCCriticals and“WhollyOutsourcedDepartment”sOCCBulletin2013-29HighestInherent RiskofCompliance,BC, and SRMHighest RiskRating of allactiveRelationshipsFalse1,069IneffectiveHIPAAAnNDA14calendardays3DaysVRC1'sEvaluationQueueSupplierNameChangeCommitteeFISBankConfidentialDataThirdParty RiskSummaryPushthroughassignedprogramsOCCA completedMaterialityAssessmentCoupaUpon acompletedFinancialCrimesreview3/26/2019VicePresidentCubaAnalysisbased on thenature of theengagement5BCTier@bokf.com1bThird PartyProviderManagementStandard100RiskRatingRegenerateAccess@WorkRequestDecember1,322MonthlyBlankSSAE18MediumOFACHitRegulatoryperspectiveincluded inannual criticalreportingHighFDRemediationTrackerReportValueAddedReseller21calendardaysVRC1 –VRO –VRC2Third PartyProviderManagementPolicy2020AnnualReportIf 1.01AND 1.17areapplicableBusinessProcessTiersAnyoneImpactscustomersbroadly enoughto threatenmarket shareOverallcommentsFormerlycriticalPropertyMaintenanceDelegationModeratelyLowWhat isthe singletransactionlimit?ExemptSharedSLAsFinancialCrimes2/14/2019Review thefile posted inthe VMOSharePointsiteTPRSSmallTeamAnyTierCongaYes1ErnstandYoungJuneRiskCouncillatenoticelog-noreply@spfarm.bok.comNon-USHeadquartersor Non-USOperations5.01NoVRCCriticals and“WhollyOutsourcedDepartment”sOCCBulletin2013-29HighestInherent RiskofCompliance,BC, and SRMHighest RiskRating of allactiveRelationshipsFalse1,069IneffectiveHIPAAAnNDA14calendardays3DaysVRC1'sEvaluationQueueSupplierNameChangeCommitteeFISBankConfidentialDataThirdParty RiskSummaryPushthroughassignedprogramsOCCA completedMaterialityAssessmentCoupaUpon acompletedFinancialCrimesreview3/26/2019VicePresidentCubaAnalysisbased on thenature of theengagement5BCTier@bokf.com1bThird PartyProviderManagementStandard100RiskRatingRegenerateAccess@WorkRequestDecember1,322MonthlyBlankSSAE18MediumOFACHit

Wild Card - Call List

(Print) Use this randomly generated list as your call list when playing the game. There is no need to say the BINGO column name. Place some kind of mark (like an X, a checkmark, a dot, tally mark, etc) on each cell as you announce it, to keep track. You can also cut out each item, place them in a bag and pull words from the bag.


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
  1. Regulatory perspective included in annual critical reporting
  2. High
  3. FD Remediation Tracker Report
  4. Value Added Reseller
  5. 21 calendar days
  6. VRC1 – VRO – VRC2
  7. Third Party Provider Management Policy
  8. 2020
  9. Annual Report
  10. If 1.01 AND 1.17 are applicable
  11. Business Process Tiers
  12. Anyone
  13. Impacts customers broadly enough to threaten market share
  14. Overall comments
  15. Formerly critical
  16. Property Maintenance
  17. Delegation
  18. Moderately Low
  19. What is the single transaction limit?
  20. Exempt
  21. Shared SLAs
  22. Financial Crimes
  23. 2/14/2019
  24. Review the file posted in the VMO SharePoint site
  25. TPRS Small Team
  26. Any Tier
  27. Conga
  28. Yes
  29. 1
  30. Ernst and Young
  31. June
  32. Risk Council
  33. latenoticelog-noreply @spfarm.bok.com
  34. Non-US Headquarters or Non-US Operations
  35. 5.01
  36. No
  37. VRC
  38. Criticals and “Wholly Outsourced Department”s
  39. OCC Bulletin 2013-29
  40. Highest Inherent Risk of Compliance, BC, and SRM
  41. Highest Risk Rating of all active Relationships
  42. False
  43. 1,069
  44. Ineffective
  45. HIPAA
  46. An NDA
  47. 14 calendar days
  48. 3 Days
  49. VRC1's Evaluation Queue
  50. Supplier Name Change Committee
  51. FIS
  52. Bank Confidential Data
  53. Third Party Risk Summary
  54. Push through assigned programs
  55. OCC
  56. A completed Materiality Assessment
  57. Coupa
  58. Upon a completed Financial Crimes review
  59. 3/26/2019
  60. Vice President
  61. Cuba
  62. Analysis based on the nature of the engagement
  63. 5
  64. BCTier@bokf.com
  65. 1b
  66. Third Party Provider Management Standard
  67. 100
  68. Risk Rating
  69. Regenerate
  70. Access@Work Request
  71. December
  72. 1,322
  73. Monthly
  74. Blank
  75. SSAE18
  76. Medium
  77. OFAC Hit