DAIR Flashcards
Data Asset Def.
Location where data is physically stored and governed
Data Risk Def.
Exposure to financial and non-financial consequences
Data Risk Governance Docs
- D.R.M. Framework
- D.R.M. Policy
- D.R. Taxonomy
- Data Standards
Data Risk Monitoring & Reporting Types
- Risk Appetite
- Issue monitoring and reporting
- Reporting to Sr. Exec., Board, Regulators
Data Risk Taxonomy Dimensions
- D.R. Awareness
- D.R. Oversight
- D. Usage Risk
- D. Management Risk
- D. Security Risk
D.R. Taxonomy Dimension for incorrect data risk monitoring or governance
D.R. Oversight
D.R. Management Framework: year created
Nov. 2021
D.R. Management Policy: year created
May 2022
RDARR stands for
Risk Data Aggregation and Risk Reporting (program)
DAIR stands for
Data & AI Risk (team)
DAIR mandates
- Independant 2nd LOD
- D.R. Reviews to 1st LOD
- Oversees the RDARR Program
- Risks associated with AI
Differences DRM Framework vs DRM Policy
Foundational principles VS guiding principles
CID&A stands for
Customer Insights, Data & Analytics
CID&A mandate
Brings together data and analytics at an enterprise level
CID&A: D.R. LOD level
1b
Data Steward
Point of contact between business and Technology
Key Data Governance Roles
D. Exec. Sponsor, Exec. IT Custodian, D. Steward, D. System Custodian, D. Op. Lead, Business Proc. Owner, Delivery Mgr.
Data Exec. Sponsor
Accountable for data management. Appoints the D. Steward. SVP level
Data Op. Lead
Performs day-to-day data management activities (Sr. Mgr)
Data System Custodian
IT role similar to D. Steward (Director)
Executive IT Custodian
IT role similar to D. Exec. Sponsor (VP level)
D.R.Management Remediation Plan will start
end of FY2023
Approval authority for D.R.M. Framework and Policy
Data, Cyber, and IT Risk Committee (DCIRC). Operat. Risk Committee (only for the policy)
