BUSINESS CONTINUITY PLAN

MORRISON, OKLAHOMA
CITIZENS STATE BANK

Re-approved July 23, 2005

 COMPUTER CONTINUITY PLAN
CITIZENS STATE BANK
MORRISON, OKLAHOMA

I. SUMMARY

A. Purpose

The purpose of the Citizens State Bank Business Continuity Plan is to assure that, in the event of a
disaster, equipment failure or software failure, critical business processes will continue.

B. Overview

The bank will develop and maintain business continuity plans that include contingency procedures for
continuing business operations in the event of a disaster. This plan will include temporary operating
procedures that include the following:

1. Departmental or Building Disaster

Short-term procedures will be developed that can be implemented in the event the building
is destroyed and or everything in a department is destroyed or inaccessible.

2. Primary Computer System Disaster

Short-term procedures will be developed that can be implemented in the events that critical
computer systems are destroyed or fail.

C. Recovery Strategies

1. Contingency Plan I A (Vision) Core Banking Software and Server

Critical Bank Processes
a) Item Processing
b) Paying and Receiving
c) Statements and Notices
d) ACH/Cash Letter
e) ATM/Debit Card Transactions
f) Internet Banking

Morrison
Citizens State Bank uses the Vision Software and associated hardware for the bank’s core
processing. Citizens State Bank has contracted with Precision Computer Company located
in Sioux Falls, South Dakota to provide an immediate replacement of the Vision Operating
System in the event of loss or damage to this system (see attached contract). The necessary
equipment including a replacement server with pre-staged compatible software will be shipped on
a next day basis and a representative of the company will travel to the recovery site to assist with
the set up of the system. Citizens State Bank will provide the Vision, Volume and Daily backup
tapes that would be necessary for loading onto this new server. The daily backups are tested
annually by Precision Computer Systems. Representatives are on call for emergencies 24 hours
per day seven days per week except Thanksgiving and Christmas Day. The contract specifies
that terminals will be shipped, but 99% of the time PCs are shipped. This makes it easy to set up
teller stations by simply attaching a teller printer to the PCs. In the event no PCs are available
these can be brought from the branch or purchased in Stillwater at Staples or Wal-Mart.

Stillwater
In the event that computer equipment is damaged or lost in Stillwater, all processing can be
brought to Morrison by courier for processing. We routinely process Stillwater’s work three days
per week in Morrison.

2. Contingency Plan I B (Vision)

Citizens State Bank has an agreement (see attached agreement) with the Meno Guaranty Bank
located in Meno, Oklahoma at U. S. Highway 60 and Main Street to serve as a backup processing
site in the event we are unable to process in Morrison. All activities will be under the direct
supervision of the Vision Support of Precision Computer Systems. We would only use this plan
in the event that Plan I fails due to weather or other unforeseen circumstances.

3. Contingency Plan II (Window/Main Network Server)

Critical Bank Processes
g) Provides PC access to Vision
h) Provides PC access to Dynastore
i) Distributes Laser Pro and Deposit Pro to PC’s
j) Distributes Microsoft Office to PC’s

Morrison
The Windows/Main Network Server located in Morrison is vital to many operations in both
Morrison and Stillwater. Morrison communicates with Stillwater with this server and provides
all software for both banks. It controls access to all applications. In the event that this server fails
or is damaged, a replacement server which is stored on the premises of the network
administrator, Interworks, Inc. located at Country Club Drive and Highway 51 in Stillwater,
Oklahoma, will be loaded with information downloaded from the Stillwater Server and the
appropriate software. Information from a backup of the hard drive of the Morrison Server is
dumped into the Stillwater Server each Saturday afternoon. A copy of all critical software is
stored at Interworks, Inc. This server can then be put into place in Morrison.

Stillwater
This server is a file server not an application server. In the event that this server fails or is
damaged, the loss of greatest concern would be documents. A few other applications such as e-
mail could easily be correct with firewall adjustments by the network administrator. The bank
owns a replacement server located on the premises of the network administrator, Interworks, Inc.
located at Country Club Drive and Highway 51 in Stillwater, Oklahoma,

The tapes used for backups in both Stillwater and Morrison are completely compatible and
interchangeable. In the event of a total disaster or hardware failure at one location, data may be
recovered at the other location.

4. Contingency Plan III (CSPI/Imaging Services/Server)

 Critical Bank Processes
k) Item Processing
l) Imaging
m) Statements

Morrison
Citizens State Bank uses the CSPI Imaging system to proof capture, image and interface proof
batches to the Vision Software for processing. In the event that this system fails in Morrison, all
work can be transported to the Stillwater branch for encoding, imaging and transmittal to
Morrison or a backup site for processing. We have two NDP 500 Imaging Systems that can each
image 2500 items per day. This will adequately handle our work load.

Stillwater
In the event that the NDP 500 Imaging System fails in Stillwater, all work will be brought by
courier to Morrison for processing.

In the event of a disaster in Morrison data can be restored in Stillwater using the compatible tape
drive.

5. Contingency Plan IV (Internet Connection Failure)

Critical Bank Processes
n) Internet Banking
o) Cash Letter and ACH
p) ATM/Debit Card Transactions
q) Wire Transmissions
r) TT&L
s) Software Support
t) OFAC
u) Credit Bureau

Citizens State Bank’s internet provider is Chickasaw Telecom Service, Inc. which is located at
504 S Main in Stillwater, Oklahoma. The recovery plan for the internet will involve recovery
plans for two points of connections. The first point of failure could be Chickasaw’s DSL
modem. We have purchased and installed another sonic wall at the Stillwater branch to have
available and have obtained additional internet services from Cox Cable. If one service goes
down, the system will automatically switch to the other service. This also gives us a backup
sonic wall.

The second potential problem would be failure of the DSL line. This would not be something
that we can control and will rely on Chickasaw’s recovery plan for failure of the line (see
attached recovery plan).

In the event that the internet connection is destroyed in Stillwater by a tornado or other disaster,
the Morrison router has a fail-over dial-up connection. The set up can be accomplished by either
the network administrator or an Internal Control Officer /Information Technology Officer.
Procedures for setting the server to dial up are attached.

6. Contingency Plan V (T1 Line Failure)

 Critical Bank Processes
v) Internet Communications
w) Telephone Communications

A T1 line connects the Morrison bank and the Stillwater branch. There is a Cisco Router at each
end of the line. There is a potential for hardware failure of the router. We have a spare Cisco
router located at Citizens State Bank at Country Club Drive and Highway 51 in Stillwater,
Oklahoma which will be used as a replacement in case of failure.

There is also a potential for the T1 Line to be damaged over which we have no control. We
would rely on Chickasaw’s Recovery Plan.

7. Contingency Plan VI (Telephone Banking)

Critical Bank Processes
x) Voice Access

Citizens State Bank uses Voice Access (Grayco Bank Products) for its telephone banking system.
Support is offered 24 hours per day, seven days per week. Two possibilities exist for disaster
with telephone banking:

 If the hard drive or other component of the OS2 based system (we are upgrading to
the Windows based system in October, 2005) fails, there is a second hard drive that
stores a backup of the data. Voice Access will ship a new hard drive to replace the
bad one overnight. Bank personnel can install the new hard drive and Voice Access
personnel will dial in to configure the hard drive and restore data to the backup drive.
 In the event of a full system failure or destruction of the unit, Voice Access will ship a
new system to the bank or backup site within 48 hours. It is possible to obtain much
of the history from the core processor.

8. Contingency Plan VII (Electrical Failure)

Critical Bank Process
y) All processes would be effected

This plan will be activated in the event electrical Power is lost for more than 24 hours.

Citizens State Bank (Morrison) owns a generator (Generac 40 KW, Diesel Fueled, 120/240 Volts,
Single Phase Model Number SD040-A164.0D18CBYYY (see attached specifications). The bank has a
maintenance contract with the seller, Clifford Power Systems, Inc., to maintain the generator and keep it
tested on our system. The generator is tested annually. The last test was in October 2004. After the
addition of an electronic governor, the test was satisfactory.

The generator power will connect to the main frame through the UPS. As soon as possible, an
electrician from Main Electric in Stillwater, Oklahoma will be called to the bank to check the generator
system for correct voltage, etc. If necessary, our Service Representative from Clifford Power System,
Inc. will be called to the bank. Then, the bank will be switched to generator power under the
supervision of Systems Support at Precision Computer Company.

This same process will be used for electrical failure in Stillwater with the generator being provided by
Kinnunen Sales and Services. A similar electrical system is in place at the Stillwater Branch.

We anticipate that the banks can be fully operational; under generator power for as long as necessary.
We have access to diesel from within three miles of the bank in Morrison and within 200 feet in
Stillwater.

D. Distribution of the Plan

The Citizens State Bank Business Continuity Plan will be distributed to the following:
1. All employees
2. Board of Directors
3. Management Team
4. Network Administrator
5. All off-site storage facilities

E. Maintenance of the Plan

1. The Citizens State Bank Business Continuity Plan will be updated at least annually and as
needed when new or better procedures are identified. The plan will be approved by the
Citizens State Bank Board of Directors annually and each time the plan is revised.

2. The plan will be reviewed with all employees at least annually.

F. Management of the Plan

A contingency operation may be necessary when one of the following items has happened:
1. The bank's computer system(s) will be out of operation more than 24 hours.
2. The bank building has been damaged and computer problems are possible.
3. Electrical power will be off for an indefinite period of time.
4. The bank building has been destroyed.

The time from the occurrence of a disaster to the end has several phases:

1. Disaster
2. Initial Response
3 Preparation for backup site if necessary
4. Backup site fully operational
5. Restoration and return to permanent facility.

II. Risk Assessment

A. Risk Assessment Process

To measure the potential risks, a weighted point rating system has been used. Each level of probability
can be assigned points as follows:
 Probability Points

High 10
Medium 5
Low 1
We obtain a weighted risk rating, probability points by multiplying by the highest impact rating for each facility.
For example, if the probability of hurricanes is high (10 points) and the impact rating to a facility is “3”
(indicating that a move to alternate facilities would be required), then the weighted risk factor is 30 (10 x 3).
Based on this rating method, threats that pose the greatest risk (e.g., 15 points and above) have been identified.

B. Analysis

Probabilit Speed Fore- Duratio User Admin Automate Essential Score

Disasters: y of warning n Dept Function d Systems Services
Onset s
Natural Threats
Internal Flooding 5 S N 5 3 3 3 3 15
External Flooding 5 G/S Y I 3 3 3 3 15
Internal Fire 10 S N L 3 3 3 3 30
External Fire 1 S N I 1 1 1 1 1
Seismic Damage 5 S N L 3 3 3 3 15
Wind Damage/ Tornado 10 S Y L 3 3 3 3 30
Snow or Ice Storm 10 G Y L 3 3 3 3 30
Human Threats:
Explosion/Extortion 1 S N L 3 3 3 3 3
Burglary 1 S N S 3 3 3 3 3
Embezzlement 10 G N L 3 3 3 3 30
Vandalism 10 S N 5 3 3 3 3 30
Robbery 1 S N 5 3 3 3 3 30
Nuclear Bomb 1 S N L 3 3 3 3 3
Nuclear Fallout 1 S N L 3 3 3 3 3
Hazardous Waste 1 G N L 3 3 3 3 3
Work Stoppage 1 S N L 3 3 3 3 3
Data Entry Error 10 S N S 1 1 1 1 10
Improper Handling of 10 S N S 3 3 3 3 30
Sensitive Data
Unauthorized Physical 1 S N S 1 1 1 1 1
Access
Malicious Damage or 10 S N L 3 3 3 3 30
Destruction of Software
or Data
Unauthorized Access to 10 S N 3 3 3 3 3 30
Data or Theft of Data
Unauthorized 1 S N 3 3 3 3 3 30
Modification of
Software or Hardware
Technical Threats:
10 S N L 2 2 2 2 20

Power Failure/
Fluctuations
Heating, Ventilating or 5 S N L 1 1 1 1 5
Air Conditioning
Failure
Malfunction or Failure 10 S N L 2 2 2 2 20
of CPU or Hardware
Failure of System 10 S N L 2 2 2 2 20
Software
Failure of Application 10 S N L 2 2 2 2 20
Software
Electromagnetic 1 S N L 2 2 2 2
Interference

LEGENDS

Probability: Speed of Onset:

H = High S = Sudden

M = Medium G = Gradual

L = Low

Duration: Impact on Functional Areas:

Long: Week or more 0 = No interruption in operations.

Intermediate: 1 to 2 days 1 = Interruptions in operations for up to 8 hours

Short: 1 hour to 1 day 2 = Interruption in operations for 8-48 hours.

3 = Interruption in operations for over 48 hours. All

main office and computer center functions may be
relocated.

C. Risk Recovery Strategies

We have identified the following general risk levels for disasters that would affect our business
continuity:

High – These are disasters that are most likely to occur. Therefore, these risks will require the most
intricate and detailed business recovery and continuity plans. Also, these are number one priority for
prevention measures when possible.

Medium - There is a likelihood of this type of disaster. We will need to be prepared for these events,
but the level of preparedness will not be as great as with those of high risk.
Low – The chance of these types of disasters are very unlikely. No detailed plan is necessary other than
the plans that are already in place.

1. Fires
Risk Level: High

Fire danger is a great concern, particularly in the operations area. Electrical fires are of utmost concern.
Other causes of fires could be caused from faulty equipment or equipment left on overnight such as a
coffee pot, chemical reactions of solutions used cleaning, lightening strikes or other acts of nature.

Activate plans IA, IB, II, III

2. Sabotage, Burglary, Vandalism, Unauthorized Access or Theft of Data

Risk Level: High

This risk level is high. These are a distinct possibility, but safeguards have been put into place to reduce
this threat. We have physical security which is tightly controlled by the Security Officer and the
Primary Internal Control Officer /Information Technology Officer jointly. The bank also has system
security controlled by passwords and access in addition to a thorough and regular review of system
logins. Also, a district Highway Patrol Office is located 15 miles from Morrison which is a definite
deterrent to burglaries and robberies.

Activate Incident Response Plan and all other appropriate plans depending on the

3. Electrical Failure
Risk: Level High

The risk level for this category is high. Both banks are located in an area that is prone to electrical
storms. The bank has experienced direct electrical hits in the past. The bank is dependent upon the local
electrical service and has experienced several power outages in the past. This category will require the
highest level of planning for discontinuity.

Activate Plan V, possibly Plans IA, IB, II, III

4. Water Damage
Risk Level: Medium

We have assigned this risk a medium level. Although the banks are not situated in a flood plain, there is
some risk of flooding. Also, there is always a possibility that water damage could occur to the
Information Technology System from plumbing problems or roof damage in a storm.

Activate Plan IA, IB, II, and III as appropriate

5. Seismic Damage
Risk Level: Low

This risk level is difficult to determine. We are assuming that the risk is low and will take no special
precautions other than those we have already planned.

6. Wind Damage, Tornadoes, Ice Storm Damage

Risk Level: High

Oklahoma experiences many tornado, wind storms and ice storms during any year. Depending upon the
damages several plans may need to be initiated.

Activate plans IA, IB, II, III

7. Hardware Failure
Risk Level: High

As equipment ages, failure can occur at anytime with no warning. The contingency plan will depend
upon the nature of the failure. Some failures can be addressed by simply calling a repairman while
other may require equipment replacement.

Activate necessary plans

8. Communication Link Failure

Risk Level High

The internet link or the telephone system could fail at any time due to storms, accidental cutting of lines,
system failures or on site hardware failure.

Activate Plan IV, V, VI

III. Emergency/Evacuation Procedures

A. Emergency Shutdown

In the event of an emergency situation the following systems will need to be completely shutdown
by the appropriate personnel.

1. Vision
2. CSPI Server
3. Network Server
4. Voice Access
5. ATM Machine
 6. All Personal Computers
7. All Fax Machines, Printers and Copiers
8. Postage Machine

B. Personnel Evacuation
The following procedures should be followed when the President, Branch Manager, or Security
Officer has deemed it necessary to evacuate:

1. Lock all cash drawers.

2. Open all doors and lock behind the last person to leave the premises.

3. Walk out of the building quickly. Do not run.

4. In Morrison all employees will meet across the street north, and in Stillwater all employees will
meet behind the building south. After every employee is accounted for they shall wait for further
instructions.

C. Asset Removal

Most natural disasters, such as tornadoes and floods, give some warning. An adequate warning can
help avoid most damage to the banks property. When an adequate warning is received, all vital bank
property and records including currency and loans should be placed in the vault. Teller drawers should
be locked. Each employee will be responsible for their work area and should place anything of
importance inside a desk or cabinet.

D. Removal of Sensitive Resources

During a disaster all sensitive resources should be placed in the vault for security. Depending on the
time allowed, all servers should be disconnected and placed in the vault with the backup tapes and
optical disks for protection.

IV. Contingency Organization

A. Disaster Management Team

1. General Responsibilities – Management Team

1. Jan McSwain has been designated by the Board of Directors of the bank to be
responsible for business continuity planning within the bank.
 2. Rick McSwain has been designated by the Board of Directors to be responsible
for monitoring equipment plans and purchases to assure that redundancy exists
for equipment and communications networks that serve mission critical business
operations.

3. Jan McSwain has been designated by the Board of Directors to ensure that cross-
training exists for persons dealing with mission critical business operations and
for persons with specific technical skills and to ensure that the plan is tested at
least annually and to produce a business impact analysis.

4. Jan McSwain has been designated by the Board of Directors to be responsible for the
IT bank wide contingency planning.

We have at lease three employees in this bank who can perform all mission critical business
processes (see Organizational Chart).

2. Specific Responsibilities – Disaster Management Team

The following employees have been designated as the Citizens State Bank Business Continuity Plan
Management Team:

a. Disaster Recovery Administrator Team Leader

Rick McSwain, President and CEO (405-747-4154 cell)

Backups:
David McSwain, Senior Vice President, Loan Officer and Branch Manager (405-880-1039)
Layne Duncan, Senior Vice President, Security Officer and Loan Officer (405-623-5086)

Responsibilities:
Identify and verify the extent of the disaster
Notify other members of the Disaster Management Team
Identify Recovery Location
Assure that Recovery Site is prepared.
Identify plans that require implementation
Activate the Disaster Plan
Notify Customers (TV, Radio, Newspaper
Notification of Employees (see attached sheet)
Notification of Regulators
Establish Command and Control Center
Provide for facilities
Notification of Insurance Company
Notification of Bonding Company
Provide for employee payroll
Initiate Recovery/Reconstruction of permanent site

b. Disaster Recovery Coordinator/Operations Team Leader

Jan McSwain, Executive Vice President (405-747-4787 cell)

Backups
David McSwain, Senior Vice President, Loan Officer and Branch Manager (405-880-
1039)
 Crystal Sanders, Operations (580-724-9248)

Responsibilities:
Implement plan
Notify/consult with appropriate vendors
Assign duties to each team members
Notify appropriate vendors
Notify Network Administrator
Supervise activity at Recovery Site
Assure that Recovery Site fully operational

c. Security Disaster Team Leader

Layne Duncan, Senior Vice President, Security Officer and Loan Officer (405-623-
5086)

Backups:
David McSwain, Senior Vice President, Loan Officer and Branch Manager (405-880-
1039)

Responsibilities:
Notify emergency responders
Implement Security Plan
Assume Responsibility for employee safety
Assume responsibility for security of sensitive information and equipment
Assist Disaster Recovery Coordinator and Administrator
Secure Disaster Site
Inventory Official Checks
Arrange for mobilization to Recovery Site
Assist with Recovery Site Security and Setup

d. Operations
Marie Will, Vice President and Operations Manager (405-880-0752)

Responsibilities:
Supervise operations personal at disaster site or recovery site
Obtain all pertinent procedures from off-site storage
Obtain all pertinent manual from off-site storage
Obtain all required forms from identified vendor

e. Network Administrator
Behfar Jananshahi, Network Administrator, Interworks, Inc (405-747-7921)
.
Responsibilities:
Assist with all technical procedures
Coordination with Disaster Team Administrator and Coordinator
Assist with the procurement of equipment
Provide testing of equipment
 3. Establishing the Off-Site Location

a. Off-Site Backup Facility Identification

1. Citizens State Bank in Morrison, Oklahoma will serve as off-site

backup facility for the Stillwater Branch. The Stillwater Branch will serve
as off-site backup facility for the Morrison Bank. Since no critical services
are performed at the Stillwater branch, all branch services can be
accomplished at the Morrison Bank which is 15 miles from the Stillwater
Branch.

2. If it is anticipated that a long term site is necessary, we will contact

one of the following companies to make arrangements for a Mobile Bank:

National Modular Bank Buildings Myrna 800-615-7320

MOA Systems Inc 888-233-1584
Red Hawk Larry Clinton 405-787-8444
800-522-2771

b. Personnel and Material Needed at a Backup Site if Necessary

Rick McSwain and Jan McSwain will select the employees who will operate at
the backup location. A decision will be made as to how many employees will
be required to manage the critical business processes at the backup site.

Materials Needed at Backup Site

Materials that will be needed to operate at the backup site are listed below. These
items are stored at off-premise storage sites at both banks. Items needed for processing at
the backup location:

1. The latest daily backup tapes (Morrison Server Backup, Stillwater Server Backup,
CSPI Server, and Vision daily backup tapes from vault or off-site)
2. System and Program Documentation (Interworks, Inc.)
3. Volume Backup obtained from off-site storage at First National Bank of Pawnee
or
Stillwater Branch
4. Vision Backup obtained from off-site storage at First National Bank of Pawnee or
the Stillwater Branch
5. All transactions since the last posting date (bank)
6. Teller cash count for current processing day (daily backup)
7. Blank notice forms (Bank and Fenton’s Office Supply)
8. Computer Paper (Bank and Fenton’s Office Supply)
9. Blank Backup Tapes (Bank and Fenton’s Office Supply
10. Supplies from Fenton Office Supplies (see attached list and agreement)
11. All Daily Procedures (Off-site storage at First National Bank of Pawnee,
Morrison and Stillwater Branch
12. Server Software (Copies located on server at Interworks, Inc.).
a. Loan and Deposit Generating Software – Deposit Pro and Laser Pro - Harland
b. Dynastore Item Processing/Imaging Software CSPI
 c. Windows Network Operating System Backup Software
d. Symantec Virus Software
e. Backup Exec
f. Microsoft Office
13. All necessary forms and equipment (see attached letter and lists)

V. Testing

A. Testing Procedures and Schedule

Citizens State Bank will conduct a structured walk-through test of the Continuity Plan at least
annually. All employees will meet and orally discuss and walk through the specific steps of the
detailed Business Continuity Plan. A copy of the plan will be given to each employee to review
and analyze. A final checklist and evaluation will be completed using the Business Continuity
Plan and the form included on the Business Continuity Plan Appendix S) Test Preparation,
Checklist and Evaluation.

The Disaster Recovery Operations Team Leader and the Network Administrator at least
annually will test the ability to restore all appropriate data to the backup server. This would
include testing tape drives, backup server, soft availability, redundancy in internet lines and fail
over internet connection for Morrison and backup T1 plan.

Annually a pre-update and accrual backup tape is sent to Precision Computer Systems for
contingency testing. The pre-backup tape is loaded into a compatible system and accruals are
completed. The proof of success is sent back to the bank.

Considered, approved and adopted by the Citizens State Bank Board of Directors on July 17, 2005.

David McSwain
Secretary to the Board
VI. Plan Appendixes

A. Alternate Site Locations and Specifications

Facility Name: Citizens State Bank Branch

 Site Option Location Notification Lead Time

CSB Branch Stillwater None 12 hours

Facility Name: Mobile Bank

Site Option Location Notification Lead Time

To Be Determined Will depend on 24 hours 12 hours

disaster

Location Name: Citizens State Bank

Location Address: 4611 W 6th St., Stillwater, OK 74074

Building Specifications: Twenty miles southwest of Morrison, brick and stone exterior, 15 rooms, and
its 4,800 square feet.

Yard Specifications: 50,000 square feet exterior, 46 parking spaces, cement surface parking spaces,
sidewalks 48” wide up to the building and around the building. Access to the bank or all parking
spaces.

Electrical Specifications: 3 outlets in 11 of the rooms, all to the city of Stillwater code standards

Mechanical Specifications: Single story, central heat and air, natural gas/electricity-all to the city of
Stillwater code standards.

Fire Protection Specifications: Fire rating, building vault, and file cabinets

Security Specifications: Alarm systems, video security systems: Red Hawk, OKC and Stillwater Policy.
Accessibility- Country Club Dr. and Highway 51, 2 exits- North side and South side accessible, fire
proof vault and fire proof storage cabinet

Communications Specifications: Telephone- Chickasaw, Internet- Cox Cable/ Chickasaw, CSPI

Modems

B. Backup Position Listing

Rick McSwain and Jan McSwain will select the employees who will operate at the backup
location. A decision will be made as to how many employees will be required to manage the
 critical business processes at the backup site. Following is a list that identifies backup employees
for each critical position in the bank.

(Also see Appendix U) Organizational Chart)

Name Title Backup

Employee(s)
Rick McSwain President, CEO Jan McSwain
Information Technology David McSwain
Jan McSwain Officer, Internal Control Crystal Sanders
Officer
David McSwain Secondary Information Marie Will
Technology Officer
Marie Will Supervisor IS Center Jan McSwain
Crystal Sanders
Patti Swart Teller Supervisor Shannon Condit
Customer Service, DDA Jan McSwain
Tessa Palmatary and CDA Crystal Sanders
Linda Eyster Representative Shannon Condit
Chris Harris
Rick McSwain
Layne Duncan Loan Officer David McSwain
Mary Cross
Michelle Shiplett, Patti Swart
Shannon Condit, Jill Henley, Tellers Tessa Palmatary
Laci Barrick, Krissy Dear Chris Harris
Jan McSwain

C. Critical Telephone Numbers

Precision Computer Co. Mark Blankespoor 605-362-1260

Vision Software and Server Kevin Baema 605-362-1267 (Cell)
 CSPI Darla Eppler 800-875-3962 96150 CN
Imaging Software and Server Tara Grabbemann 573-635-1281
Chickasaw Latricia Snyder 405-533-2111
T1 Line and Internet Connection 405-533-2200
SBC Gary 800-431-1411
Telephone and Lines 800-234-2355
800-683-0590
Unisys Corporation Grag Gandy 800-874-8647
Imaging Server and Hardware 405-417-0419
405-660-4448
William Allen 972-541-8145
IBM Corporation Ted Thomas 800-426-7378
Vision Server 800-656-0833
Voice Access Charles Casey 800-992-0304
Telephone Banking Charles Chia 972-991-0303
Red Hawk Larry Clinton 405-787-8444
ATM, Security System, Night 800-522-2771
Deposit, Vault Door, Safe Boxes Frank Everett 405-275-4822
Bankers Bank 405-848-8877
ACH, Wires, TT&L, Cash 800-522-9220
Letter
Interworks Behfar Jahanshahi 405-624-3214
Computer Consulting 405-747-7921 (Cell)
Main Street Checks 800-482-2468
Shazam 800-537-5427
ATM 800-383-8000
Deluxe 800-633-3808
Federal Reserve 800-410-1690
405-270-8568
Billie Chrz 580-370-0561

Also, in case of a disaster the following organizations need to be contacted immediately:

Morrison
Noble County Sheriff 580-336-3517
State Banking Department (Charles Griffith) 405-521-2782
FDIC (Charles Foster) 918-622-6164
Morrison Fire Department 580-724-3535

Red Hawk 800-522-2771

405-275-4822
Stillwater
Stillwater Police Department 405-372-4172
Stillwater Fire Department 405-372-0497
State Banking Department (Charles Griffith) 405-521-2782
FDIC (Charles Foster) 918-622-6164
Kinnunen Sales and Service 405-743-4400
Generator and Equipment 405-747-8736

Red Hawk 800-522-2771

405-275-4822
D. Data Communications Inventory

(See Communications Diagram)

E. Departmental Recovery Requirements

1. Operations

Business Impact Analysis Questionnaire

 1. Critical Business Processes — Critical business processes performed by your department.
 Automated Systems — Automated system(s) and other equipment that you currently use to perform
each critical business process (e.g., main computer, network, PC, voice/data communications, etc.).
 Software Application Name — Name of the application used to perform each critical business
process.
 Frequency — Frequency or cycle of the critical business process (i.e., daily, weekly, monthly, etc.).
 Maximum Outage — Maximum acceptable outage time (in 24 hour increments, 24, 48, 72, 96,
120, etc.) that you could function without the automated system(s) if a disaster or disruption
occurred and rendered your system(s) inoperable, before temporary operating procedures are
implemented.

Automated System(s)
Critical Business (Main computer, Software Maximum
Frequency
Process network, PC, voice/data Application Name Outage
communications, etc.)
Data Processing Internet/PC, Vision Info Bank/Digital Daily 48hr
Server Network server in Vision V05.
Morrison and Stillwater
CSPI Imaging Server Dynastore 8.2.9 Daily 48hrs
Network server in
Morrison and Stillwater
Statement/Notices Vision Server, Network Vision V05.1 Weekly 120hrs
server in Morrison and
Stillwater
CSPI Server/PC Dynastore 8.2.9 Weekly 120hrs
Paying/Receiving PC Vision Server Printer, Vision Product Suite Daily 24hrs
Network server in V05.1
Morrison and Stillwater
Settle Fed Funds Telephone, Network Daily 24hrs
server in Morrison &
Stillwater
ATM/Debit Card Vision Server/Internet, V05.1 Daily 24hrs
Network server in
Morrison and Stillwater
ACH/Cash Letter Internet/Vision Server, V05.1 Daily 24hrs
Network server in
Morrison and Stillwater

Automated System(s)
(Main Computer,
Critical Business Network, PC, Software
Process Voice/Data Application Name Maximum
Frequency
Communications, etc) Outage
Internet Banking Internet/Vision Server, V05.1 Daily 24hrs
Network server in
Morrison and Stillwater
Internet Microsoft/Internet Microsoft/Internet Daily 24hrs
Explorer Network server Explorer
in Morrison and Stillwater
Credit Bureau Microsoft/Internet Microsoft/Internet Daily 24hrs
Explorer Network server Explorer
in Morrison and Stillwater
Wires Microsoft/Internet Microsoft/Internet Daily 24hrs
 Explorer Network server Explorer
in Morrison and Stillwater
TTL Microsoft/Internet Microsoft/Internet Daily 24hrs
Explorer Network server Explorer
in Morrison and Stillwater
Software Support Microsoft/Internet Microsoft/Internet Daily 24hrs
Explorer Network server Explorer
in Morrison and Stillwater
OFAC Microsoft/Internet Microsoft/Internet Daily 24hrs
Explorer Network server Explorer
in Morrison and Stillwater
ACH/Cash Letter Microsoft/Internet Microsoft/Internet Daily 24hrs
Explorer Network server Explorer
in Morrison and Stillwater

2. Please assess the impact of not performing each critical business process beyond the maximum
acceptable outage determined previously.
 Category — Specify one or more of the following categories for each critical business process:
Member Services, Operations, Financial, Legal/Regulatory, Other.
 Impact — Specify a High, Medium or Low customer service impact rating for each critical business
process.
 Basis — Provide the basis (rationale) for the impact rating.

Category/Impact
Member Legal/
Critical Business Process Services Oper. Finl. Regulatory Basis
Data Processing H H H Must keep bank in
balance
Paying/Receiving H H H H Customers access
to funds
ACH/Cash Letter H H H H Keep bank in
balance
ATM/Debit Card H H H H Keep bank in
balance
Internet Banking H H H H Bank/Customers/
Dependent
Statements/Notices Operational
Settle Fed Funds Operational
Loan/DDA/CDA H L L L Generate
Software Support H H L L Operate Bank

 Temporary Operating Procedure — Temporary operating procedure or alternate processing

method (e.g., manual processing) that could be used in the short-term to perform the critical
business process in the event of a systems outage.
 Volume Level — The minimum level of output or services required to sustain operations for the
critical business process (e.g., 150 disbursements per day).
  Duration — Length of time in hours (duration) that the temporary operating procedure could be
used to effectively sustain operations (4, 24, 48, 72, etc.).
 Additional Resources — Additional resources required to perform the temporary operating
procedure.

Temporary Operating Volume Duration

Critical Process Additional Resources
Procedure Level (Hours)
Date Process Holds Tickets/ACH/Cash 5000 24 Backup for Messages, 3
Letter ATM until plan Extra
effect
Paying/Receiving Write/hold tickets until 3000 24 3 Supervisors to approve
plan is in effect Transactions
ACH/Cash Letter Request Hard copy 5000 24 Drivers/Couriers/3 Extras
Internet Banking None 500 24 Tech Support
Settle Feds Funds Telephone 1 48 Extra Employees
Statement Notice None/Hold 400 48-72 None
Software Support

3. Potential revenue would be lost or extra expense incurred if the critical business processes were
interrupted for one day, one week or one month:

Revenue

Interruption for:
Critical Business Process Day Week Month
Data Processing (Update Accrual) $ $ $
Loan Income Accruals 10,000 70,000 30,000
Service Changes 1,500 10,500 45,500
Security Income 28,000
FF Sold 100 700 3,000
New LNA, CDA, DDA 2,000 14,000 60,000

Fees/Fines/Penalties

Interruption for:
Critical Business Process Day Week Month
Data Processing $ $ $
Loan Fees 1,000 7,000 30,000
Other Fees 140 1,000 4,000
Other Income 78 585 2,300

Additional Expenses (temporaries, overtime, couriers, all other)

Interruption for:
Critical Business Process Day Week Month
Item Processing $ $ $
Courier 500 3,500 15,000
OT 1,200 8,400 33,600
 Technicians/Other Services 2,000 14,000 60,000
Not covered by insurance
ACH/Cash letter/ ATM/Debit Cards

4. Description of restoration procedures that would be necessary to synchronize alternate/ manual

processing with automated systems for critical business processes performed in operations:

Critical Business Process: Item Processing:

Restoration Procedures: PCS will bring PC, server, and teller printers- everything needed for restoration
within 24 hours. Imaging and statements can be processed at the branch with the extra NDP 50 Program
Directory DPOP has been copied to CD that can be copied to the CSPI PC. CSB has backup network
server.

Critical Business Process: Paying/Receiving

Restoration Procedures: PCS will bring PC/Teller printer or we can use existing equipment at the branch.
CSB has backup network server.

Critical Business Process: Cash Letter/ACH

Restoration Procedures: Service can be restored after PCS installs equipment since we pull these from the
internet based program. There is also a digital certificate installed at the branch. CSB has backup
network server. CSB has redundant internet access.

Critical Business Process: ATM/Debit Cards

Restoration Procedures: Service can be restored after PCS installs equipment we pull from an internet
based program. CSB has backup network server. CSB has redundant internet access.

Critical Business Process: Originating Loans

Restoration Procedures: Hand type loans, by using a calculator and typewriter onto paper and the
documents were provided by a 3rd party supplier. CSB has backup network server.

Critical Business Process: Internet Banking/Internet

Restoration Procedures: Service will be restored after PCS brings the equipment. CSB has a backup
network server. We have redundant routers and 2 internet providers at CSB-Stillwater and CSB-
Morrison. We can revert to dial-up access in case of an emergency.

5. Normal employee (FTE) total for the bank: 23

6. List all equipment necessary for disaster recover. See Appendix H

7. List all forms and materials necessary for disaster recover. See Appendix I and Appendix O

8. List the records or reports necessary to perform the alternate/manual processing for the critical business
processes:
 Description — describe the record or report.
 Storage Location — where are they stored.
 Availability — determine if the record or report is normally available in hard copy.

Description Storage Location Availability

Critical Business Process: Item Processes/ Paying and Receiving/ ACH/CL/ATM /Debit Cards
 All Procedures Branch/1st National Pawnee Yes
Bank
Branch Yes
Branch Yes
Official Check Inventory P: Yes
GL Account numbers Trial Balance Yes
Customer Account numbers Trial Balance Yes
Proof Selectors Branch

9. Special documentation and manuals necessary to perform the alternate/manual critical business
processes:

 Description — describe the documentation or manual

 Storage Location — where are they stored.

Description Storage Location

Critical Business Process: Item Processing/
Paying and Receiving
CDA Manual Stillwater Branch
DDA Manual Stillwater Branch
Teller Manual Stillwater Branch

10. Output (e.g., reports, forms, special calculations, etc.) from your departmental alternate
manual operating procedures that are critical to other departments:

9. procedures

Output Description Dependent Department

Past Due Loans Loans
Cash Transaction Request Paying and Receiving BSA
Loan Posting Journal Loans
Overdraft Report All
Account Numbers All
Account Deposits All
Account History All

11. Input (e.g., reports, forms, special calculations) from other departments that is critical for performing
operations disaster operating procedures:

Department Name Input Description

Item Processing Transactions
Paying and receiving Transaction

12. Providers that need to be notified in the event of a system outage: See attached list

13. Special procedures should be performed after the systems have been restored:
Item Processing: Reconcile statement of conditions, and income and expense reports
 Comparison of Recovery Strategies

Recovery Strategy
Reciprocal Second Data
Criteria Cold Site Warm Site Agreement Hot Site Center
Recovery time frame 5 3
Compatibility of the 4 3
operating environment
Costs prior to a disaster (e.g., 3 1
operating costs or
subscription fees)
Costs following a disaster 3 1
(e.g., declaration fees and
daily usage fees)
Availability when needed 5 2
Proximity to the data center 5 1
(e.g., ease of transportation of
staff and materials)
Ease of the transition 5 1
Availability of technical 5 1
support staff
Familiarity of operating 5 1
environment to support staff
Capacity to process workload 4 4
Growth capability 5 1
Protection from an area-wide 3 3
disaster
Feasibility of testing the 5 2
strategy
Cost of testing the strategy 0 3
Total
Overall ranking 4 2

Legend: 5 = Highest, 1 = Lowest

2. Customer Service

Business Impact Analysis Questionnaire

 1. Critical Business Processes — Critical business processes performed by your department.
 Automated Systems — Automated system(s) and other equipment that you currently use to
perform each critical business process (e.g., main computer, network, PC, voice/data
communications, etc.).
 Software Application Name — Name of the application used to perform each critical business
process.
 Frequency — Frequency or cycle of the critical business process (i.e., daily, weekly, monthly, etc.).
 Maximum Outage — Maximum acceptable outage time (in 24 hour increments, 24, 48, 72, 96,
120, etc.) that you could function without the automated system(s) if a disaster or disruption
occurred and rendered your system(s) inoperable, before temporary operating procedures are
implemented.

Automated System(s)
Critical Business (Main computer, Software Maximum
Frequency
Process network, PC, voice/data Application Name Outage
communications, etc.)
Opening New PC or Main computer Deposit Pro Daily 24
Accounts
Opening CD New PC or Main computer Deposit Pro Daily 24
Account
Checking Chex Telephone or PC Internet-Deluxe Daily 24
System
Check Orders PC Mainstreet V2.1.4 Daily 24
Copying ID’s Copy Machine Daily 24

2. Restoration procedures that would be necessary for critical business processes performed in CSR
Department:

Critical Business Process: Generate Deposit Account; Order Checks; Accept TT&L's
Restoration Procedures:
a. Restore use of Deposit Pro
b. Restore access to Mainstreet and Deluxe on Demand and entering any new check
orders
c. Restore access to Info Bank (Bankers Bank) via the internet

3. Necessary staff to that is required to perform critical business processes:

Title Necessary Staff

Critical Business Process:
Generating DDA New Accounts 1 CSR
Check Ordering
Check Chexsystems

Critical Business Process:

TT&L 1 CSR
Collections

4. Personnel that are cross-trained to restore critical business functions. See appendix B
5. List the specialized equipment necessary to perform the alternate/manual critical business processes:

Type Description Quantity

Critical Business Process: Opening Deposit Accounts
PC (server connected)
PC (standalone) 1
Laptops (define PC)
Laser printer 1
Typewriter
Calculator (w/tape) 1
Fax machine
Copier 1
Postage meter
Work surfaces

6. Specialized forms and supplies necessary to perform the alternate/manual critical business processes:

Type Description Quantity

Specialized Forms:
New Account Form
Business Form
Shazam Application
Signature Card Personal and Business
Disclosures For all accounts
Savings Bond Order Form
Exception Hold Form
Case by Case Hold Form
Safety Deposit Box Card
Stop Payment Forms
Specialized Supplies:
Pens
New Account Folders
Binder

7. Records or reports necessary to perform the critical business processes.

 Description — describe the record or report.
 Storage Location — where are they stored.
 Availability — determine if the record or report is normally available in hard copy.

Description Storage Location Availability

Critical Business Process: Customer Service Representatives
DDA Manual Branch Yes
CDA Manual Branch Yes

8. Special documentation and manuals necessary to perform the alternate/manual critical business processes.

Description Storage Location

Critical Business Process: Opening Deposit
Accounts
CD Manual Branch
Deluxe Check Order Branch
Mainstreet Check Order Branch
New Accounts Manual Branch
 9. Output (e.g., reports, forms, special calculations, etc.) from your departmental operating procedures that is
critical to other departments:

Output Description Dependent Department

Critical Business Process:
Stop Payments Item Processing
Signature Cards Item Processing

10. Special procedures that should be performed after the systems have been restored:

Critical Business Process: Item Processing, statement of conditions, and income and expense reports
_______________________________________________________________________________

3. Loan Department
Business Impact Analysis Questionnaire

1. Critical Business Processes — Critical business processes performed by your department.

 Automated Systems — Automated system(s) and other equipment that you currently use to perform
each critical business process (e.g., main computer, network, PC, voice/data communications, etc.).
 Software Application Name — Name of the application used to perform each critical business
process.
 Frequency — Frequency or cycle of the critical business process (i.e., daily, weekly, monthly, etc.).
 Maximum Outage — Maximum acceptable outage time (in 24 hour increments, 24, 48, 72, 96,
120, etc.) that you could function without the automated system(s) if a disaster or disruption
occurred and rendered your system(s) inoperable, before temporary operating procedures are
implemented.

Automated System(s)
Critical Business (Main computer, Software Maximum
Frequency
Process network, PC, voice/data Application Name Outage
communications, etc.)
Originating PC, Server Laser Pro Daily 120

2. Assessment of the impact of not performing each critical business process beyond the maximum
acceptable outage determined previously.
 Category — Specify one or more of the following categories for each critical business process:
Member Services, Operations, Financial, Legal/Regulatory, Other.
 Impact — Specify a High, Medium or Low customer service impact rating for each critical business
process.
 Basis — Provide the basis (rationale) for the impact rating.

Category/Impact
Member Legal/
Critical Business Process Services Oper. Finl. Regulatory Basis
Originating Loans M Speed of how fast the
loans could be
processed would be
reduced
 3. For each critical business process, please list the following information:
 Temporary Operating Procedure — Temporary operating procedure or alternate processing
method (e.g., manual processing) that could be used in the short-term to perform the critical
business process in the event of a systems outage.
 Volume Level — The minimum level of output or services required to sustain operations for the
critical business process (e.g., 150 disbursements per day).
 Duration — Length of time in hours (duration) that the temporary operating procedure could be
used to effectively sustain operations (4, 24, 48, 72, etc.).
 Additional Resources — Additional resources required to perform the temporary operating
procedure.

Temporary Operating Volume Duration

Critical Process Additional Resources
Procedure Level (Hours)
Originating Loans Manual processing with 5 per 120 Actual forms from ABS
paper forms day

4. Systems that have been developed within this department that are considered to be critical and are not
supported by the central Information Systems department:

Hardware Operating Programming Supported by:

Application Database
System System Language Name/Title
None

5. Potential revenue that would be lost or extra expense incurred if the critical business processes were
interrupted for one day, one week or one month:

Revenue

Interruption for:
Critical Business Process Day Week Month
$ $ $
Originating loans 0 0 100,000

6. Restoration procedures that would be necessary for critical business processes performed in your
department:

Critical Business Process: Originating Loans

Restoration Procedures: Type loans by hand using a calculator or typewriter on documents that were
from a 3rd party supplier.

7. List the necessary staff to perform the alternate/manual critical business processes:

Title Necessary Staff

Critical Business Process:
Originating Loans 1 loan office and 1 assistant to help type loans

8. Employees that have been cross-trained to perform the critical business processes in the loan department.

Critical Business Process: Originating Loans: Rick, David, Layne, Mary, Chris, and Tessa
9. List the specialized equipment necessary to perform the alternate/manual critical business processes:

Type Description Quantity

Critical Business Process: Loan Origination
PC (server connected)
PC (standalone)
Laptops (define PC)
Laser printer
Typewriter Wheel writer 1900 2
Calculator (w/tape)
Fax machine
Copier
Postage meter
Work surfaces

10. Specialized forms and supplies necessary to perform the alternate/manual critical business processes:

Type Description Quantity

Specialized Forms: See attached
ABS- Commercial, Promissory Note, Security 20 each form
Agriculture, Installment loan Agreement, and Mortgage
forms

11. Records or reports necessary to perform the alternate/manual processing for the critical business
processes:

Storage Location Availability

Description
Critical Business Process: Loan Originating
Loan Forms ABS- OKC As needed to be purchased Monday-Friday
by going to ABS OKC office

12. List the special documentation and manuals necessary to perform the alternate/manual critical business
processes:

Description Storage Location

NA NA

13. Output from your departmental that is critical to other departments.

Output Description Dependent Department

Past Due Loans Loans
Loan Account Maintenance All
Loan Posting Journal Loans
 14. Input from other departments that is critical for performing your department’s alternate/manual
operating procedures?

Department Name Input Description

Critical Business Process: Item Processing
Loan Account Maintenance
 F. Distribution Register

The Recovery Plan will be distributed to all current employees at Citizens State Bank. This
will serve as a guide to help prepare and inform each employee of the recovery process.

Name Date Signature

Laci Barrick
Adam Brown  
Shannon Condit
Mary Cross  
Krissy Dear
Layne Duncan
Linda Eyster
Chris Harris
Ashley Houser
Jill Henley
David McSwain
Jan McSwain
Rick McSwain
Wendy Odenwald
Tessa Palmatary
Pallavi Pradhan
Zona Quick
Crystal Sanders
Amy Schaffler
Martha Simank
Michelle Shiplett
Patti Swart
Winnifred Vculek
Marie Will
Linda Wright
Travis Perry
G. Documentation Inventory
The following critical documents are kept on the public drive on the CSB Network.

- Vault Cash Morrison

- Vault Cash Stillwater
- Bankers Bank Reconciliation
- Internet Bill Pay Check Log
- Expense Check Log
- ACH CAS Balancing Worksheet
- Travelers Checks
- Code Sheets
- Procedures
- Policies
- Regulations
- Employee Manual
- Department Manuals
- Offsite Storage
 H. Emergency Operations Center Equipment and Supplies

Emergency Operations Center Equipment as follows:

Personal computer with proper software to run all operations (Precision,
Inter-Banking, E-Mail, Internet, FTP, ACH01.bat and ACH02.bat icons used to transfer to disk)
Desk printer
Main printer
Statement printer
Imaging machine
Encoder
Typewriter
Postage machine
Voice access computer and software
IBM mainframe and server
IBM Console
CSPI Server
Windows Server
ATM Machine
CDROM 1 Computer with Dynastore to transmit data
CDROM 2 Computer with Dynastore and Easy CD Creator to process statements
Syntron Shaker
Modem
Scanner and Computer to scan signature cards
Ten-key calculator
Bankers Bank fingerprint pad
Desks and Chairs
Personal Computers

Emergency Tellers Equipment as follows:

Computer with necessary software
Coin counter
Currency counter
Insight teller machine
Ten-key calculator
Check encoder
Check printer for cashier checks and money orders
Fax machine
Printer
Credit card machine for cash advance
Copier machine
Telephones

For a complete list of the supplies that would be needed in an emergency situation please refer
to Appendix O) Office Supply Inventory.

I. Forms Inventory
Original paper copies of each of these above forms have been placed in our off-site location
(Citizens State Bank in Stillwater).

 Operations/Bookkeeping

- Notice Forms
- Bill Pay Checks and Log
- Bankers Bank Reconciliation Worksheet
- ACH CAS Balancing Worksheet
- ATM Cash Balancing Worksheet
- ACH Origination Log
- Wire Information Log
- Voice Access- Reset PIN # Log
- Shazam/Debit Card Log
- Backup Tape Logs
- Return Not Our Item Slips
- Forward Not Our Item Slips
- Mixed Regular Slips
- Qualified City Regular Return Slips
- Velocity Remittance Invoice
- Clear protective envelopes used to encode checks
- Envelopes
- Check Adjustment Request (Federal Reserve Bank)
- Statement Forms
- Statement Envelopes

 Tellers

- Vault Balancing Cash Sheet

- Coupon Order Forms
- Balance Teller Cash Report
- Bond Redemption Manual if Insight is unavailable
- Deposit Carbon Slips
- Notice of Delayed Availability
- Deposit Books
- Order form for Deluxe Checks
- Drive-thru envelopes
- Stop Payment Request
- New Customer Account Brochure
- Temporary Checks
- Loan Envelopes
- Extension (Deferral Agreement & Disclosure Statement
- ACH Debit Stop Payment Request
- Written Statement Under Penalty of Perjury
- Signature Card (Individuals)
- Signature Card (Business)
- CD/IRA Debit/Credit Slips
- Loan Debit/Credit Slips
- Savings Debit/Credit Slips
- DDA Debit/Credit Slips
 - Blank General Ledger Debit/Credit Slips
- Bankers Bank account 1132 GL Debit/Credit Slips
- Other Loan Fees account 4190 GL Debit/Credit Slips
- Collection & Exchange account 4620 GL Debit/Credit Slips
- Wire Fees account 4640 GL Debit/Credit Slips
- Credit Application for Loans
- Cash In and Outs (for each teller and vault)
- Teller Receipts
- Money Straps
- Coin Wrappers
- Legal size blank mailing envelopes
- Calendar
- Travelers Checks Log
- Cash Cards Log
- Expense Checks Log
- Address/Name change forms
- CTR forms ($3,000.00 or more and $10,000.00 or more)
- Night drop log
- Balance Sheet

J. Insurance Policy Inventory

Issued By: Union Standard Insurance Group Agent Name: Bradshaw Agency, Inc
4013 NW Expressway, Suite 250 324 S Husband
Oklahoma City, Ok 73116 P.O. Box 1717
Stillwater, Ok 74076
405-372-8800
Policy No.
CPA 9065733-22 Common Policy (Building and Business Income)

Issued By: Continental Western Insurance Co. Agent Name: Bradshaw Agency, Inc
4013 NW Expressway, Suite 250 324 S Husband
Oklahoma City, Ok 73116 P.O. Box 1717
Stillwater, Ok 74076
405-372-8800
Policy No.
CPA 9041069-23 (Common Policy)
CUA 9041067-23 (Commercial Umbrella Policy)
WCA 9052551-23 (Workers Compensation and Employees Liability Insurance Policy)

Wilshire Insurance Company Agent Name: Westphalen Insurance

Services
P.O. Box 3328 P.O. Box 21760
Omaha, NE 68103 Oklahoma City, Ok 73156
405-751-0433
800-777-7412
Policy No.
CG00013689 (Garage Repossession Liability Insurance)

Issued By: Union Standard Insurance Group Agent Name: Bradshaw Agency, Inc
4013 NW Expressway, Suite 250 324 S Husband
Oklahoma City, Ok 73116 P.O. Box 1717
Stillwater, Ok 74076
405-372-8800
Policy No.
CPA 9065733-21 Common Policy (LLC Building and Business Income)

Voyager Indemnity Insurance Company

260 Interstate North Circle NW
Atlanta, GA 30339-2111
800-348-0734

Certificate No. RRD18043-0

Authority Reference No. D9166 55
(Rick and Jan McSwain, Location - 701 Mary)

Scottsdale Insurance Company Agent Name:Westphalen Insurance Services

Home Office: P.O. Box 21760
One Nationwide Plaza-Columbus, Ohio 43215 Oklahoma City, Ok 73156-
1760
Administrative Office: 405-751-0433
8877 North Gainey Center Drive 800-777-7412
Scottsdale, Arizona 85258
1-800-423-7675

Policy No.
CLS0882714 (Rick and Jan McSwain Trust)
Scottsdale Insurance Company Agent Name: Insurisk Excess
Surplus
Home Office: 1500 Riverfront
Drive
One Nationwide Plaza-Columbus, Ohio 43215 Little Rock, AR 72203
Administrative Office:
8877 North Gainey Center Drive
Scottsdale, Arizona 85258
1-800-423-7675

Policy No.
CPS0610210 (Noble County Land and Cattle)
Blue Cross and Blue Shield Of Oklahoma
1215 South Boulder
P.O. Box 3283
Tulsa, Ok 74102-3283
918-592-9475

Policy No. 08173

(Employee Health Insurance)

Guardian
Western Regional Office
P.O. Box 2454
Spokane, WA 99210-2454
800-459-9401

Policy No.
G-402247 (Employee Life Insurance, Dental and Long-Term Disability)

Kansas Bankers Surety Company

P.O. Box 1654
Topeka, KS 66601
785-228-0000

Internet Banking Coverage

Kansas Bankers Surety Company
P.O. Box 1654
Topeka, KS 66601
785-228-0000

Financial Institution Crime Bond

9270 OK

Kansas Bankers Surety Company

P.O. Box 1654
Topeka, KS 66601
785-228-0000

Directors, Officers and Employees Indemnity and Bank Lender Liability Policy
DL 6010 OK

K. Main Computer Hardware Inventory

 SERIAL #
(IF
DESCRIPTION MANUFACTURER AVAILABLE) BRAND VALUE
2-Wooden & Fabric Chairs       $1,514.00
4-Armed Chairs (fabric) Allsteel DLRM 92   $2,120.00
3-Armless Chairs (fabric) Sitonit, Inc 8132   $1,230.00
Unarmed Chair (fabric) Cramer Industries     $410.00
2-Five shelf wooden bookcases       $3,320.00
Wooden typewriter table       $219.99
2-"L" shaped wooden desk       $6,100.00
3-Straight line wooden desk       $5,500.00
Computer wooden desk       $219.99
4-Long metal folding tables       $551.96
Fire extinguisher Halon 1211     $67.65
3-Adding machines Swintec 4600DP     $747.00
IBM typewriter Lexmark     $379.99
Pitney Bowes postage machine   26207   $16,815.00
NCR encoder Tecniflex 53-16731374   $12,140.00
2-Wooden credenzas (2 drawer)       $2,670.00
Computer keyboard Sag Electronics EN60950   $24.99
Computer tower Sag Electronics 100003853   $640.00
Monitor Hitachi CN155   $399.00
Scan Jet 5P Hewlett Packard SG74312098   $499.99
Tape Recipical Exabyte 8551080   $1,095.00
CRW4260 tx
Compact Disk Holder Yamaha (426)   $89.99
Plex 32 Printer Olympus Sa05317   $2,999.00
Bottom per holder for olymus
printer   10790   $321.00
Dell computer tower Dell 0932RY   $640.00
Dell computer tower Dell 0932RY   $640.00
Dell computer tower Dell 90224 Dimesion 2100 $640.00
HP Computer tower Hewlett Packard   Vectra $2,600.00
Dell computer tower Dell     $2,600.00
Plexwriter
HP Computer tower Hewlett Packard   Drive $2,600.00
HP Computer tower Hewlett Packard   Memorex Drive $6,000.00
990075351-
Voice Access Five Star 17A   $16,000.00
13-Battery backup APC   Power Pacs 350 $818.87

5-Battery backup APC   Smart Ups 1500 $4,245.00

5-Dell Computer keyboards Dell SK-8110   $124.95
NMB Computer keyboards   60291055   $24.99
2B09908103
5-HP Computer keyboard Hewlett Packard B   $124.95

Laser Jet printer Hewlett Packard US DK 164752 551 printer $2,799.00

2-Laser Jet printer Hewlett Packard   1200 series $599.98

9246-7292378-
Unisys printer Unisys 001ccil   $10,000.00
Laser Jet printer Hewlett Packard JPBLM42222 8150DN $6,500.00
C4781AJPHH1896
Base for printer Hewlett Packard 26   $321.00
2-HP Printer Hewlett Packard CNB1B10860 1160 $599.98
109A005497
OK1Data   1 Microline 393 Plus $299.99
Encoder-Imaging Unisys 510540040 Dec. 2001 $275,000.00
IBM Main Frame & Server IBM 38821040 P Series $120,000.00

IBM Console IBM 23CN485 Info Windo 11353 $1,079.99

3-Dell Computer Monitors Dell 151FPb Sept. 2003 $1,197.00
6-HP Computer Monitors Hewlett Packard   L1520 $2,394.00

Windows Server Dell   lrg tapes $3,500.00

Server CSPI Hewlett Packard   sm tapes $12,000.00
Computer (POD1)     HP72 $640.00

ATM Machine   9621 MD-10012GY $25,000.00

Syntron shaker for encoding
items       $919.00
3-Fax Modem U.S. Robotics     $423.00
Switch HP Procurve   Switch 2512 $539.58
Switch Netgear   FS116 $79.99
Baseline
Switch 3Comm   24port $176.95
Optical Disk HP   5200ex $1,095.00
Modem 3Com   56 Kbps Tech $140.00
        TOTAL
        $562,437.77

L. Master Call List

Employee Home # Cellular # Spouse & Work # Notification
Checklist
 Laci Barrick 405-780-7039 405-269-1042  
Adam Brown   816-695-3350  
Shannon Condit 405-780-7233 405-612-0314 Charles 724-2277
Mary Cross   405-714-2569 David 405-714-2568
Krissy Dear 405-372-7565 405-269-2089 J.C. Kieth 405-269-2329
Layne Duncan 405-478-4641 405-623-5086 Vicki Cell 405-623-5469
Linda Eyster 580-724-3312 405-880-4260 Gary 405-743-5110
Chris Harris 405-834-7864   Amy Kubier 405-641-2358
Ashley Houser   620-515-0168 Blake Collier 918-214-2982
Jill Henley 580-336-4288 580-336-8037  
David McSwain   405-880-1039  
Jan McSwain 580-724-3442 405-747-4787 Rick
Rick McSwain 580-724-3442 405-747-4154 Jan
Wendy Odenwald 580-724-9242     
Tessa Palmatary 918-762-2413    
Aniket Patankar
Pallavi Pradhan 405-624-8470 405-742-0637 405-744-1243
Zona Quick 580-724-3410   John Jones 405-612-4272
Crystal Sanders 580-724-9248 405-612-7484 Martin Cell 405-612-7485
Amy Schaffler 580-724-9138   Jason cell 405-612-1815
Martha Simank 405-372-1921 405-612-2119  
Michelle Shiplett 405-624-6307 405-612-4865 Phil 405-612-4875
Patti Swart 580-724-2222 580-370-1165  580-370-1116 Terry
Winnifred Vculek 580-336-9463    
Marie Will 580-724-3470   Bill Cell 405-747-5090
Linda Wright 918-225-3564 918-223-5814 Gene
Travis Perry 405-880-1783

M. Master Vendor List

Precision Computer Co. Mark Blankespoor 605-362-1260

Vision Software and Server Kevin Baema 605-362-1267 (Cell)
CSPI Darla Eppler 800-875-3962 96150 CN
Imaging Software and Server Tara Grabbemann 573-635-1281
Chickasaw Latricia Snyder 405-533-2111
T1 Line and Internet Connection 405-533-2200
SBC Gary 800-431-1411
Telephone and Lines 800-234-2355
800-683-0590
Unisys Corporation Grag Gandy 800-874-8647
Imaging Server and Hardware 405-417-0419
405-660-4448
William Allen 972-541-8145
IBM Corporation Ted Thomas 800-426-7378
Vision Server 800-656-0833
Voice Access Charles Casey 800-992-0304
Telephone Banking Charles Chia 972-991-0303
Red Hawk Larry Clinton 405-787-8444
ATM, Security System, Night 800-522-2771
Deposit, Vault Door, Safe Boxes Frank Everett 405-275-4822
Bankers Bank 405-848-8877
ACH, Wires, TT&L, Cash Letter 800-522-9220
Interworks Behfar Jahanshahi 405-624-3214
Computer Consulting 405-747-7921 (Cell)
Main Street Checks 800-482-2468
Shazam 800-537-5427
ATM 800-383-8000
Deluxe 800-633-3808
Federal Reserve 800-410-1690
405-270-8568
Billie Chrz 580-370-0561
Scantron Kevin Keely 800-228-3628
Noble County Sheriff 580-336-3517
State Banking Department Charles Griffith 405-521-2782
FDIC Charles Foster 918-622-6164
Morrison Fire Department 580-724-3535
Stillwater Police Department 405-372-4172
Stillwater Fire Department 405-372-0497
Kinnunen Sales and Service 405-743-4400
Generators and Equipment 405-747-8736

N. PC Software Inventory
The PC Software inventory is stored at in the vault at Citizens State Bank in Stillwater.
Following is a record of the software:

Esker Tun 1st Vision Release 2004 Secondary Test Site

Harland Pro Suite February Update 2004
Shazam Resource (2 Update CD’s) July Update 2004
CSPI Image Processing CD-ROM 2nd Release 2004 (2 Update CD’s)
January Update 2004 December Update 2004
st
1 Vision Release 2004 (2 Catch up CD’s) December Payroll Update 2004
February Update 2005
Vision: December Update Loads – Alert 12/20/04
Vision: December Update Loads – Alert 12/23/04
Vision: December Update Loads – Alert 12/24/04
Vision: December Savings Bond File – Alert 11/24/04
Vision: RMD Calculator After December Update – Alert 12/17/04
Vision: Loan Adjustable Method After December Update – Alert 12/17/04
Vision: 1098/1099 Substitute Notice After December Update – Alert 12/22/04
Vision: First Vision Release 2004-Stops/Holds/Instructions/Warnings (stp-fix.r) 7-21-04
Vision: Second Vision Release 2004 – Remittance Changes Alert
Voice Access Update for Vision 2nd Release 2004
Sysinfo.dat Alert 12/7/04 After 2nd Vision Release 2004
January Payroll Internet Patch 2005 to the December Payroll Update 2004 CD-ROM
January Software Patch Diskette “jan7up.1” 1/10/05
January Software Patch Diskette “jan25.1” 1/27/05
April 19, 2005 Software Patch
Error with Teller Cash Reconciliation in InSight Alert
1st Vision Release 2005

O. Office Supply Inventory

List of Supplies Needed for Daily Operations Vendor

o Blank Computer Paper (4 Boxes) Fenton’s

o Ink Pens (1 Box) Fenton’s
o Pencils (1 Box) Fenton’s
o GL Debit/Credit slips (1 Package) Fenton’s
o DDA Debit/Credit slips (1 Package) Fenton’s
o Savings Debit/Credit slips (1 Package) Fenton’s
o Loan Debit/Credit slips (1 Package) Fenton’s
o Internet Bill Pay Checks (1 Package) Moore Forms
o 3 ½ floppy diskette for ACH and Cash Letter (1 Box) Staples
o Calendar (1) Fenton’s
o Stamps Fenton’s
(For Deposit Only, Closed Account, Insufficient Funds,
Do Not Re-Deposit) (1 of each)
o Highlighters (1 Box) Staples
o Stapler (4) Staples
o Staples (4 Boxes) Staples
o Scotch tape (4 Rolls) Staples
o Paper clips (4 Boxes) Staples
o Rubber bands (1 Package) Staples
o Main printer paper (1 Box) Fenton’s
o Optical disks (2) Fenton’s
o Backup tapes (1 Box) Fenton’s
o Calculators (4) Stillwater Typewriter
o Telephones (4) Jim Smith
o White out (1 Box) Staples
o Ribbons for printer (1 for Each Printer) Staples
o Adding Machine Paper (1 Box) Staples
o CD’s (1 Box) Staples
o Pencil Sharpener (1) Staples
o Printer Cartridges (1 for Each Printer) Fenton’s
o Receipt book (1) Fenton’s
o Stamps (Address, Cancel Stamp, For Deposit Only, Fenton’s
Renew, Bond, TTL Stamps) (1 of Each) Fenton’s
o Sticky Pads (1 Package) Fenton’s
o Money straps (1 Box of Each) Fenton’s
o Coin wrappers (1 Box of Each) Fenton’s
o Currency/Coin bags (10) Block
o Coin trays (4 of Each) Block

o Cashier checks and money orders (1 Package) Deluxe

o Teller Machine Paper (12 Rolls) Fenton’s
o Printer (1) Interworks
o Notices (1 Box) Printed Images
o Envelopes (4 Boxes of each size) Printed Images
o Statement Forms (1Box) Versatech
o Statement Envelopes (1 Box) Printed Images
o Temporary Checks (1 Package) Deluxe
o Cash Ins/Cash Outs (1 Package each for 4 tellers) Fenton’s
o Personal Computers (4) Interworks
 Refer to Appendix I) Forms Inventory for a complete list of the critical forms
that are needed for the continuation of operations.

P. Off-Site Storage Inventory

Box 5 First National Bank Pawnee OK
1. Payroll Software
2. Accounts Payable Software
3. Special Backups before and after Install
4. Year End 1999
5. Y2K Download (CDA, LNA, DDA)
6. Y2K General Ledger History Download
7. Imaging backup on CDs

Box 6A
Vision System Box First National Bank Pawnee OK

1. Micro Update for Disk Drives

2. Test tape
3. AIX Toolbox
4. 3780 Plus RS6000/AIX SyncCable+
5. AIX V 4.3.3 Extended Documentation
6. Server pSeries and KS/6000 Standalone Diagnostics
7. Printer Drivers
8. AIX™ V4.3.3. 5765-C34
9. Software Suite
10. Test Disk
11. PCS Systems CD
12. Vision 1st Release 2001
13. July/August Update 2001
14. Installation Report
15. End-User Non-Disclosure and License Agreement
16. AIX V4 Bonus Pack
17. HP Sure Stone Optical

Box 6B
Manuals First National Bank Pawnee OK
1. PCI Adapter Placement Reference
2. HP Sure Stone Optical Disk Drive
3. Installation Guide
4. Diagnostic Information for Multiple Bus System
5. System Unit Safety Information
6. Super Stack ® 3 Baseline 10/100 Switch 24- Port
7. NetUPS SE Uninterruptible Power System 1000-3000 VA
8. AIX Versio 4.3- Quick Beginnings
9. Net Installation Management Guide (AIX) Version 4.3.3
10. Installation Guide (AIX Version 4.3.3)
11. License Information IBM
12. AIX Quick Installation and Startup Guide
13. AIX Version 4.3.3 Bonus Pack Release Notes
14. 128- Port Asynchronus PCI Adapter-Installation and User Guide
15. Warranty IBM
16. User’s Guide- InfoWindow II 3153 ASCII Disp
17. C-Kermit- Communication Software
18. 32X (Max) SCSI-2 CD-Rom Drive- Installation and User’s Guide
19. PCI Single-Ended Ultra SCSI Adapter- Installation and User’s Guide
20. July/August Update to First Vision Release of 2001 Installation Instruction

Box 6C First National Bank Pawnee OK

1. All reports from Conversion
2. Morrison Test Files from Conversion

Box 8 A First National Bank Pawnee OK

(Keep all backups for IRS 2001 Backup)

Vision January Update 2002

Vision backup before and after January Update 2002
Vision February Update 2002
Vision Backup before and after February update
Vision 2nd Release 2001
January update to 2nd Release 2001
Vision update before and after January Update 2001
Year End 2001
2001 Step 22 All Files Backup. I gave Year End Backup to Jodi Thompson. We are unable to locate, so
we will keep this.

Vision Conversion reports/backups and conversion tapes

1. Year End 2000
14. IRS Filling Diskettes
December Update 2001 to 2nd Release 2001
Payroll update 2001
May 2002 Update
Vision backup before and after May 2002 Update
First Release 2002
Secondary database backup First Release 2002
July update 2002
August Update 2002 (8-28-02)
Year End Step 23 (12-31-98)- Extra tape that is close to year end 1998
Final Backup Step 14 (1-1-00)- Extra tape that is close to year end 1999

Box 10 Citizens State Bank Vault Stillwater

2002 Year End Procedures

12-31-2002
All Files Backup
1. Before Update and Accrual Step 9
2. After Batch and Accrual Step 9
3. YTD Information Step 25
4. After Year End IRS File Build Step 25
5. After End of Day Update and GL Adjustments Step 39
6. After Year End Update Step 44
1-1-03
All Files Backup
1. Before Update and Accrual Step 3
2. After Update and Accrual Step 9

2-23-03
IRS Tax 2002 Mag Media
1. State Tax Disk
2. SSA Tax Disk
3. IRS Tax Disk
4. 1099 M Journals 2002
5. Bond Interest Journal 2002
6. Yearend Payroll 2002
Backups
1. All Files backup Payables before/after interface and year end update 1-3-02
2. Special Backup Payroll 2002 W2 Info Year End Step 3 1-12-03
3. All Files Payroll Year End 2002 W2 Info Step 11

Box 1 A This is the box Interworks uses for new computer installs.
Citizens State Bank Vault in Stillwater

Esker Tun 1st Vision Release 2004 Secondary Test Site

Harland Pro Suite February Update 2004
Shazam Resource (2 Update CD’s) July Update 2004
CSPI Image Processing CD-ROM 2nd Release 2004 (2 Update CD’s)
January Update 2004 December Update 2004
1st Vision Release 2004 (2 Catch up CD’s) December Payroll Update 2004
February Update 2005
Vision: December Update Loads – Alert 12/20/04
Vision: December Update Loads – Alert 12/23/04
Vision: December Update Loads – Alert 12/24/04
Vision: December Savings Bond File – Alert 11/24/04
Vision: RMD Calculator After December Update – Alert 12/17/04
Vision: Loan Adjustable Method After December Update – Alert 12/17/04
Vision: 1098/1099 Substitute Notice After December Update – Alert 12/22/04
Vision: First Vision Release 2004-Stops/Holds/Instructions/Warnings (stp-fix.r) 7-21-04
Vision: Second Vision Release 2004 – Remittance Changes Alert
Voice Access Update for Vision 2nd Release 2004
Sysinfo.dat Alert 12/7/04 After 2nd Vision Release 2004
January Payroll Internet Patch 2005 to the December Payroll Update 2004 CD-ROM
January Software Patch Diskette “jan7up.1” 1/10/05
January Software Patch Diskette “jan25.1” 1/27/05
April 19, 2005 Software Patch
Error with Teller Cash Reconciliation in InSight Alert
1st Release 2005

Box 15
System Update First National Bank of Pawnee
Box 16 First National Bank of Pawnee
Year End 2003
& Update 2004 CD & Installation Procedures

Year End Procedures 2003 Revised

Year End Step 45 All Files Backup (12-31-03)
Year End Backup Step 26 (12-31-03)
Year End Step 32 All Files Backup Original IRS Files
Year End Post Accrual Backup Step 13 (12-31-03)
Year End Step 40 All Files Step 12 (1-1-04) 12-31-03
Pre Update Backup Year End Step 4 1-1-04 All Files (12-31-03)
Pre Backup Year End Step 9 (12-31-03)
1099-M Miscellaneous Journal
W2
1099 Interest Journal
1099-C Journal
Interest Paid Notices (Commercial and Agriculture)
1098 Real Estate Journals
Exception Journals (All)
Payroll Special Backup Year End Contains W2 File 2003
Payroll All Files Backup Year End 2003 Step 10 (1-6-03)
Payroll W2 Journal
Payroll Year End Procedures

All Files Backup Before February Update 2004

Vision Backup Before February Update 2004
Accounts Payable Before February Update 2004
Secondary Database Backup Before February Update 2004
Payroll All Files Backup Before February Update 2004
All Files Backup After February Update 2004
Secondary Database After February Update 2004
Accounts Payable Backup After February Update 2004
Payroll All Files After February Update 2004
Vision Backup After February Update 2004

Box 17 Citizens State Bank in Morrison

Year End 2003 Work Papers

Loan Work Papers

Savings Bond Work Papers
Customer Information Work Papers

Box 18 First National Bank of Pawnee

First Release 2004 (CD-ROM only in Box 1A in Stillwater)

All Files Vision Backup After 1st release 6-1-04

Accounts Payable All Files After 1st release 6-1-04
Payroll All Files After 1st release 6-1-04
Volume Backup After 1st release
1st Vision Release CD of 2004
Payroll All Files Before 1st release 6-1-04
Vision All Files Backup Before 1st Vision release 6-1-04
Accounts Payable Before 1st release 6-1-04

Payroll All Files After 1st release 5-21-2004

1st Vision Release CD 2004 Test Site
1st Vision Release
Final Catch up CD

All Files Backup After 1st vision release 2004 5-21-04

Account Payable After 2004 Final Catch-up CD 5-21-04
Payroll Backup Before 1st Payroll Release 5-21-04
Accounts Payable Before 1st Accounts Release 5-21-04

Volume Backup After 1st release 5-19-04

Backup Secondary Database After 1st release 5-19-04
All Files Backup Before 1st Vision release 5-21-04

Accounts Payable After 1st release 5-12-04

1st Vision Release 2004 5-12-04
A1X5L for Power V5.1 update CD’s (2) 5-12-04
Payroll Backup After 1st release 5-12-04
All Files Backup After 1st release 5-12-04
Vision Backup After 1st release 5-12-04
Secondary Database Backup Before 1st release 5-12-04
Vision Backup Before 1st release 5-12-04
Accounts Payable Before 1st release 5-12-04
All Files Backup Before 1st release 5-12-04
Volume Backup Before 1st release 5-12-04
Payroll Backup Before 1st release 5-12-04

Box 19 Citizens State Bank Vault Stillwater

July Update 2004 (CD-ROM only in Box 1A in Stillwater)

Verification of CD-Rom July Update 2004

Vision Backup Before July Update 2004
Secondary Database Backup Before July Update 2004
All Files Backup Before July Update 2004
Accounts Payable Backup Before July Update 2004
Vision Backup After July Update 2004
Secondary Database Backup After July Update 2004
All Files Backup After July Update 2004
Accounts Payable Backup After July Update 2004
Payroll Backup After July Update 2004
July Update 2004 Vision Installation Instructions

2nd Vision Release 2004 (CD-ROM only in Box 1A in Morrison Vault)

Vision Backup Before 2nd Vision Release 2004
Volume Backup Before 2nd Vision Release 2004
Secondary Database Backup ME, QE & YE Before 2nd Vision Release 2004
All Files Backup Before 2nd Vision Release 2004
Accounts Payable All Files Backup Before 2nd Vision Release 2004
Payroll All Files Backup Before 2nd Vision Release 2004
Vision Backup After 2nd Vision Release 2004
Volume Backup After 2nd Vision Release 2004
Secondary Database Backup ME, QE & YE After 2nd Vision Release 2004
All Files Backup After 2nd Vision Release 2004
Accounts Payable All Files Backup After 2nd Vision Release 2004
Payroll All Files Backup After 2nd Vision Release 2004
Verification of CD-ROM 2nd Vision Release 2004
2nd Vision Release 2004 Installation Instructions

2003 Releases and Update CD-ROM’s

2nd Vision Release 2003
August Update 2003
March Update 2003
December Update 2003
December Payroll Update 2003
1st Vision Release 2003 (2 Update CD’s)
July Update 2003

Box 20 Citizens State Bank Vault Stillwater

December Update 2004 (CD-ROM only in Box 1A in Stillwater)

Verification of CD-ROM December Update 2004

Vision Backup Before December Update 2004
Secondary Database Backup Before December Update 2004
All Files Backup Before December Update 2004
Accounts Payable Backup Before December Update 2004
Payroll Backup Before December Update 2004
Vision Backup After December Update 2004
Secondary Database Backup After December Update 2004
All Files Backup After December Update 2004
Accounts Payable Backup After December Update 2004
Payroll Backup After December Update 2004
2nd Vision Release 2004 December Update Installation Instructions

January 2005 Software Patch

January Software Patch Installation Instructions 1/10/05 and Downloaded Patch File Diskette
“jan7up.1” only are in Box 1A in Stillwater
All Files Backup Before January Software Patch
Vision Backup After January Software Patch

January 25, 2005 Software Patch

January Software Patch Installation Instructions and Downloaded Patch File Diskette “jan25.1”
only are in Box 1A in Stillwater
All Files Backup Before January 25, 2005 Software Patch
Vision Backup After January 25, 2005 Software Patch
December Payroll Update 2004 “Payroll Only”
(CD-ROM only in Box 1A in Stillwater)
December Payroll Update 2004 CD Installation Instructions
Special Payroll Backup Before December Payroll Update and January Internet Patch
Payroll All Files Backup Before December Payroll Update and January Internet Patch
Payroll All Files Backup After December Payroll Update and January Internet Patch
January Payroll Internet Patch 2005 to the December Payroll Update 2004 CD-ROM Installation
Instructions and Downloaded Diskette “janpay.1”

February Update 2005 (CD-ROM only in Box 1A in Stillwater)

Verification of CD-ROM February Update 2005
Vision Backup Before February Update 2005
Secondary Database Backup Before February Update 2005
All Files Backup Before February Update 2005
Accounts Payable Backup Before February Update 2005
Payroll Backup Before February Update 2005
Vision Backup After February Update 2005 (Step 24)
Secondary Database Backup After February Update 2005
All Files Backup After February Update 2005 (Step 25)
Accounts Payable Backup After February Update 2005 (Step 25)
Payroll Backup After February Update 2005 (Step 25)
Project Release/Update Journal
2nd Vision Release 2005 February Update Installation Instructions

Box 21 First National Bank of Pawnee

Year End 2004

Year End Procedures 2004

Year End All Files Backup Step 9 Before B&A (12-31-04)
Year End All Files Backup Step 13 After B&A (12-31-04)
Year End All Files Backup Step 26 After GL Adjustments (12-31-04)
Year End All Files Backup Step 31 After Year End IRS Build Update (12-31-04)
Year End All Files Backup Step 40 After GL Update (12-31-04)
Year End All Files Backup Step 45 After Year End Update (12-31-04)
All Files Backup Step 5 Pre-Update B&A (1-1-05)
All Files Backup Step 13 After B&A (1-1-05)
1098 Mortgage Interest Statements (Commercial & Agriculture)
1099-Miscellaneous Journal
Payroll W-2 Journal
1099 Interest Journals
1099-C Journal
1099-Int Journal-Bonds only
1098 Real Estate Journals
Loan Interest Paid Journal
Payroll Year End Procedures
Accounts Payable Year End Procedures
Exception Journals
IRS File Build Journal
Transmittal Forms
Tax Verification Report
FIRE Filing Information Returns Electronically Results, Procedures and Passwords
State 1099R Summary and Transmittal
Publication 1220
All Files Backup After Mag Media with Verification
Vision Backup After Mag Media with Verification
2 of 2 Diskettes containing IRS information sent to State
2004 W-2 Mag Media Diskette used to transmit and SSA Mag Media Journal
Worksheet with the history deletion and the dates the YE Notices were sent to Optical

Box 22 Citizens State Bank Vault Stillwater

Year End 2004 Work Papers

Savings Bond Work Papers

Customer Information Work Papers
Loan Work Papers
FIRE Filing Information Returns Electronically Results, Procedures and Passwords
Transmittal Forms
New Transmitter Number
Worksheet with the history deletion and the dates the YE Notices were sent to Optical
Accounts Payable and Payroll Procedures
Year End Procedures 2004
Publication 1220
Mag Media Reporting Booklet
Backup tape of CIF Unattached that was sent to optical and deleted
CSB Daily Processing Procedures Morrison and Stillwater

Box 23 (Clear Tupperware Box) Citizens State Bank in Morrison

CSPI Software and Hardware

Box 24 Citizens State Bank Vault Stillwater

1st Vision Release 2005

Vision Backup Before 1st Release 2005

Payroll All Files Backup Before 1st Release 2005
Accounts Payable All Files Backup Before 1st Release 2005
Secondary Database (ME, QE, & YE) Backup Before 1st Release 2005
Volume Backup Before 1st Release 2005
All Files Backup Before 1st Release 2005
Vision Backup After 1st Release 2005
Payroll All Files Backup After 1st Release 2005
Accounts Payable All Files Backup After 1st Release 2005
Secondary Database (ME, QE, & YE) Backup After 1st Release 2005
Volume Backup After 1st Release 2005
All Files Backup After 1st Release 2005
Verification of CD-ROM Part 1 of 1st Release 2005

VISION BACKUP AFTER AIX 5L VERSION 5.3 IBM UNIX UPDATE 7/19/05
VOLUME BACKUP AFTER AIX 5L VERSION 5.3 IBM UNIX UPDATE 7/19/05

Box 25 First National Bank of Pawnee

IBM UNIX Update 7/19/2005 (AIX 5L Version 5.3)
IBM Packing List
AIX 5L Version 5.3 Expansion Pack Release Notes
AIX 5L Version 5.3 Release Notes
AIX Toolbox for Linux Applications CD-ROM
AIX Toolbox for Linux Source Code CD-ROM
IBM Microcode Update Files and Discovery Tool V1.8.14
Mozilla V1.7.3 Web Browser and Application Suite CD-ROM
AIX 5L V5.3 Expansion Pack CD-ROM
AIX 5L V5.3 Base Operating System Volume 1-8 CD-ROM
AIX V5.3 Documentation CD Volume 1-2
AIX V5.3 Update CD Volume 1-2
AIX 5L Version 5.3 Installation Guide and Reference
PCS Systems CD (AIX, Unixware7, Unix 8, Patches, Tools and Drives) Ver.1.2c
AIX 5L V5.3 Update CD Volume 1 of 2
AIX 5L V5.3 Update CD Volume 2 of 2

Second copy of Secondary Database Backup (ME, QE, & YE) Before 1st Release 2005
Second copy of Vision Backup Before 1st Release 2005
2ND Copy of VISION BACKUP AFTER AIX 5L V5.3 IBM UNIX UPDATE 7/19/05
2NDCopy of VOLUME BACKUP AFTER AIX 5LV5.3 IBM UNIX UPDATE 7/19/05

CSB Procedures
Daily Processing Procedures- Morrison
Daily Processing Procedures- Pawnee
Daily Processing Procedures- Stillwater

Q. Software and Data Files Backup/Retention Schedule

1. The Vision Server daily, Network Server and CSPI Imaging Server backups consists of
10 tapes each. The pre-accrual backup copy is transported to our Stillwater Branch by
courier every day while the post-accrual backup is stored in the Morrison Vault. The
tapes are returned from the Stillwater branch one per day every ten days.
2. The Network Server and the CSPI Imaging Server tapes are stored offsite in Stillwater.
The tapes are returned from the Stillwater branch one per day as needed.
3. The Friday (weekly) pre-accrual tapes for the Vision Server and the Friday backup tapes
for the network server and the Thursday (weekly) CSPI Imaging Server will be kept off-
site at the Stillwater Branch for one month.
 4. The Month-End and Quarter End tapes for the Vision Server will be kept off-site for one
year.
5. The Year-End tapes are stored at the First National Bank at Pawnee and are kept for
seven years.
6. Additionally, every Saturday all data from the Morrison network server is transferred to
the hard drive of the Stillwater Branch network server which give a second recovery
option.

Logs of all backup tapes are kept both in Morrison and in Stillwater.

R. Telephone Inventory

Morrison
Intercom # Employee
10 Amy Schaffler
11 Martha Simank
12 Linda Eyster
13 Chris Harris
14 Teller 2 (Michelle Shiplett)
15 Jan McSwain
16 Travis Perry
17 Rick McSwain
 18 Teller 4
19 Layne Duncan
20 Patti Swart
21 Winnie Vculek
22 Crystal Sanders
23 Zona Quick
24 Operations
25 Marie Will
26 Teller 1 (Shannon Condit)
27 Mary Cross
28 Linda Wright
29 Pallavi Pradhan
48 Boardroom

Stillwater
Intercom # Employee
11 Tessa Palmatary
12 David McSwain
13 Mary Cross
14 Rick McSwain
15 Operations
16 Teller 2
17 Teller 1
18 Wendy Odenwald
19 Teller Workroom
20 Teller 3
21 Teller 4

S. Test Preparation, Checklist and Evaluation

Responsible Scheduled Actual

Type of Test Comments
Parties Date Date
T. Letter from Supplier

July 8, 2004

Terry Carpenter
Fenton Office Supply
P O Box 2257
Stillwater OK 74076

Dear Terry:
The purpose of this letter is to assure that you will be able to supply us with equipment and materials
that we may need in the event of a disaster. We also need to be assured that we can obtain these items
within a few hours of the disaster.

I have attached a list of the items we anticipated that we will need.

Please respond by signing below.

Thank you very much.

Sincerely,

Jan McSwain, Ph. D.

Chairman of the Board
Executive Vice President

_________ Yes, we can provide these items to you within a few hours.

__________________________________ _____________________
Signature Date
U. Organizational Chart

BOARD OF DIRECTORS – Chairman – Jan McSwain

President, CEO and Chief Lending Officer

Rick McSwain

Vice President Executive Vice President, Information Technology Officer

Linda Wright Internal Control Officer and COO Insurance Agent
Jan McSwain Winifred Vculek

Auditor
Jerry Parsons Tag Agency
Zona Quick
Senior Vice President, Senior Vice
Secondary Information President
Internal Control VP, Tertiary IT Technology Officer Layne Duncan Part-time Collateral
Zona Quick Officer, Supervisor David McSwain
Martha Simank IS Center Inspector
Patti Swart, AVP Marie Will Dan Barrick
Teller Supervisor, AVP Vice President
Patti Swart Mary Cross
AVP Branch Operations
Jennifer Shouse and Sales Manager
Collections Officer
Wendy Odenwald
Travis Perry
Morrison Tellers and
Information Systems Customer Service Representative
Employees Amy Schaffler Branch Tellers and
Customer Service Loan Documentation
Crystal Sanders Michell Shiplett Pallavi Pradham
Martha Simank Shannon Condit Representatives
Chris Harris
Adam Brown Linda Eyster Laci Barrick Jill Henley
Zona Quick
Ashley Collier Krissy Dear Tessa
Palmatary
V. Complete Inventory List of all Equipment and Furniture for
Citizens State Bank Including Morrison and Stillwater

See the attached list in the Business Continuity Plan.