Operational Risk Management Form Template for United States

Sarbanes-Oxley Act (SOX): Federal legislation that sets requirements for all U.S. public company boards, management, and public accounting firms regarding internal controls and financial reporting

Dodd-Frank Act: Wall Street Reform and Consumer Protection Act that brought significant changes to financial regulation and includes provisions for operational risk management

Federal Reserve SR 21-3: Federal Reserve Board's guidance specifically addressing operational risk management requirements and best practices

COSO Framework: Committee of Sponsoring Organizations framework providing integrated approach to internal control and enterprise risk management

Basel Committee Guidelines: International banking standards that include specific provisions for operational risk management in financial institutions

HIPAA: Healthcare Insurance Portability and Accountability Act governing healthcare data privacy and security requirements

SEC and FINRA Regulations: Securities and Exchange Commission and Financial Industry Regulatory Authority rules governing financial services operations

ISO 31000: International standard providing principles and guidelines for effective risk management practices

ISO 27001: International standard for information security management systems and related operational risks

NIST Cybersecurity Framework: National Institute of Standards and Technology framework for managing cybersecurity-related operational risks

State Data Breach Laws: Various state-specific requirements for data breach notification and response procedures

CCPA: California Consumer Privacy Act establishing data privacy requirements and operational controls for businesses handling California residents' data

OSHA: Occupational Safety and Health Act establishing workplace safety requirements and operational controls

EPA Regulations: Environmental Protection Agency requirements governing environmental risk management and compliance

FFIEC Guidelines: Federal Financial Institutions Examination Council guidelines for business continuity planning and operational resilience