This Exposure Draft sets out the Bank’s expectations with regard to financial institutions’technology risk management framework and practices proportionate to the size and complexity of the financial institutions. Technology risk management is the continuous end to end process of identifying, assessing, mitigating and monitoring related risks to reduce and maintain risk within a predetermined acceptable level. Based on the questions posed in the Exposure Draft, the submission provides a foundation for the development of an effective risk management programme, necessary for assessing and mitigating risks identified within technology systems. AIC acknowledges the ultimate goal of this framework, i.e., to help financial institutions better manage technology-related risks and enhance technology resiliency. This submission highlights the importance of cloud computing services that can help FSIs to reinvent and optimise their relationship with technology, quicken go-to-market access, automate and strengthen security, improve customer experience, and lower costs, compared to traditional IT models.