Activity
Assess gaps in IT
Perform Governance Framework gap analysis
Organisation
Responsible
IT Expert
Consulted
IT Governance Expert
Project Team
Input/Output
Input data
AS-IS analysis
TO-BE model
Output data
Gap report
Requirements
Requirements (Basel II)
Data quality
Data warehousing
Data analysis
Data collection
Requirements (SOX)
Section 409: Real Time Issuer Disclosures
Section 302: Corporate Responsibility For Financial Reports
Section 1102: Tampering With a Record or Otherwise Impeding an Official Proceeding
Section 906. Corporate responsibility for financial reports
Section 802: Criminal penalties for altering documents
Section 403: Disclosures Of Transactions Involving Management And Principal Stockholders.
Section 1001: Sense of the Senate Regarding the Signing of Corporate Tax Returns by Chief Executive Officers.
Section 404: Management Assessment Of Internal Controls
Requirements (MIFID)
Article 25 Obligation to uphold integrity of markets, report transactions and maintain records
Article 23 Record of services or activities giving rise to detrimental conflict of interest
Article 3 Conditions applying to the provision of information
Article 46 Execution policy
Article 12 Reporting channels
Article 7 Record-keeping of client orders and decisions to deal
Article 29 Pre-trade transparency requirements for MTFs
Article 30 Post-trade transparency requirements for MTFs
Article 13 Organisational requirements
Article 29 Publication and availability of pre- and post-trade transparency data
Article 51 Retention of records
Article 32 Arrangements for making information public
Article 16 Safeguarding of client financial instruments and funds
Article 8 Record-keeping of transactions