Red Flag Program -- do I have to use all 26 Red Flags?
by Russ Horn, CISA, CISSP, CoNetrix.com
Question: Do I have to incorporate all 26 Red Flags from Supplement A into my Program?
Answer: Not necessarily, the 26 Red Flags listed in Supplement A to Appendix J are only ?illustrative examples?. In addition, you are not limited to use only the 26 ?example? Red Flags, you can also create your own. If you choose not to use one of the examples, it might be wise to document why. This will be helpful once you begin the examination phase.
First published on BankersOnline.com 9/15/08
print
share