Abstract
NTT Data Corporation has a banking systems business unit that supports backbone processes of financial institutions. Due to possible social impact of system failure in banking systems, the Financial Services Agency publishes a financial inspection manual and requires financial institutions to manage system risks. IT systems vendors are also requested to properly implement risk management in their system operations provided for financial institutions. We have been implementing an approach that intends to raise risk-awareness among project members in light of our view that the first step of risk management is to identity risks promptly and accurately. In this paper, we present progress of the approach and future steps.
