Case Study: VAIT Compliance

Global Reinsurer

The client, a German-based, global reinsurer, determined that an end user computing (EUC) governance framework and program were required to satisfy VAIT. These requirements can broadly be summarized as:

• Create and maintain a risk- based inventory of EUC files
• Enforce and monitor varying levels of change/ release (version) control based on risk classification
• Monitor EUC files to identify unauthorized changes
• Control and limit access to critical EUC files
• Identify files which contain confidential or personally identifiable information (PII)