Click to return to BOL home page
Banker Store BOL Vendor Connect BOL Career Connect BOL Learning Connect Bankers Information Network
Home Compliance Lending Operations Security Marketing Technology/eBanking
Top Stories Bankers' Threads Background Check CrimeDex Em@il Education ID Verification Record Retention
 


MAIN CONTENT 
Compliance

    Agency Road Maps

    Alphabet Soup

    Compliance Tools

    FACTA/FCRA

    OFAC

Lending

    Article 9

    FACTA/FCRA

    HMDA Heaven

    Lending Tools

    SCRA

Marketing

Operations

    Check 21

    Disaster Updates

    Disaster Recovery

    HR Corner

    IRA Season

    Money Matters

    Operations Tools

    SARResearchGuide

Security

    AML/BSA

    Bank Robbery

    Counterfeits

    ID Fraud/Phishing

    Security Tools

Technology/eBanking

    Disaster Updates

    Disaster Recovery

    Info Security


SPECIAL AREAS 
BOL Archives

BOL Blogs

Briefing Archive

Calendar

Court Watch

Disaster Issuances

Em@il Education

Examiner's Corner

Executive Briefing

Infovault

Launch Pad

Lessons Learned

Monthly Roundup

Risk Management

Site Map

Site Orientation

Top Stories


~ ~ ~
SERVICES 
Background Check
BOL Conferencing

CrimeDex

Em@il Education

ID Verification

Record Retention


~ ~ ~
SHOP 

Banker Store
Bankers Info Ntwk
Books
Vendor Connect

CONNECT 

Career Connect

Learning Connect

Vendor Connect

Guru Central

INTERACT 

Ask a Guru
Bankers Threads

Contact Us

Give Us Feedback


TOOLS 

60 Second Solutions

Alphabet Soup

Banker Tools

BOL Forms

FUN 

Banker Humor

Banker Memories

BOL Recipes

eCard Exchange

LEARN MORE 

About Advertising
About Our Sponsors
About Us


Print Friendly! Email This Article! Discuss NOW!


THE SECURITY OFFICER'S ROLE, Part II by Dana Turner, Security Education Systems

The First Problem: Appointment
The first and most important part of the security function of a financial institution is for the Board of Directors to select and formally appoint the most appropriate person to the job of Security Officer. Unfortunately, on an industry-wide scale, in all but large financial institutions, there are very few Security Officers who actually applied for or sought the position. Most are "appointed" to - or "drafted" for - the position. And, because many Board members don't really understand what the Bank Protection Act or Regulation H -12 CFR Part 298 Subpart F requires or what the Security Officer's job involves, they don't adequately prepare or support the person they select to fill the position. For this reason, the Board of Directors should have a copy of Reg H before a Security Officer is appointed. It is also important for them to know that the liability assumed by the Security Officer is also assumed by the Directors.

The Bank Protection Act and Regulation H state that it is your institution's Board of Directors that is responsible for designating a Security Officer, "...who has the authority to research, develop and implement..." the institution's Security Program. The Security Officer's position often does not require full-time staffing, but the Board should carefully consider both the potential candidates' qualifications and his/her available time that may be dedicated to addressing security issues. Emerging industry-standard professional qualifications for an institution's Security Officer include:
  • Holding at least a mid-to-upper-level manager's or executive's position (if you have the responsibility for achieving results but you also have no power, you'll never get anything done. The other reason it's important for the Security Officer to be an officer of the financial institution is for insurance purposes. Because of the liability involved, insurance is imperative.);
  • Membership on the institution's Executive Committee (you can't protect the institution and its personnel unless you know what's going on at all organizational levels);
  • The ability to report directly to the Board of Directors or an independent audit committee about security matters (you must have a guarantee of absolute confidentiality and the ability to investigate everyone's activities and the Board needs to know at the outset of the non-disclosure requirements of the Bank Secrecy Act.);
  • Experience in several operational areas (you have to be able to relate and apply security principles and procedures to all functions);
  • Education regarding business management, occupational health and safety, and the administration of justice fields (you will function as the manager of a business unit, a safety inspector and as a "company cop");
  • Not also being the auditor (your auditor should act as your investigative companion and as the person who documents investigations); and
  • The fulfillment of other duties, so long as those duties do not compromise internal controls (someone has to watch you, too).
The Second Problem: Training
What does the Security Officer have to know? Not everything - just where to find everything! You become a "resource" person - an "investigator" and a "detective" - finding, investigating and protecting the relationships shared with the five industry-standard priorities of the Security Department. These priorities include the protection of:
  • Employees, insiders and institution-affiliated parties;
  • Customers, vendors and third-party service providers;
  • Facilities that the institution owns, manages, maintains or controls;
  • Assets that are both tangible and intangible; and
  • Records and documents that exist in all forms, paper and electronic.
Neither the Bank Protection Act nor Regulation H requires that the Security Officer be trained about security practices. However, regulatory agencies may develop a "field practice" that mandates training for a Security Officer. Providing initial and continuing training for the Security Officer will lessen both the institution's and the Security Officer's liability in many areas. In addition to state and national membership associations, other private sources are involved with developing industry-standard security practices and offering various levels of training to Security Officers, including:
  • American Society for Industrial Security (asisonline.org);
  • Association of Certified Fraud Examiners (cfenet.com);
  • BankersOnline (www.BankersOnline.com)
    • Banking Associations that provide security training for members such as:
    • The American Bankers Association (www.aba.com),
    • America's Community Bankers (www.acbankers.org),
    • Bank Administration Institute (www.bai.org),
    • Credit Union National Association (www.cuna.org),
    • Independent Community Bankers of America (www.icba.org), and the
    • State Banking and Credit Union Associations
  • Private security training and consulting organizations such as:
  • Local "peer" groups whose membership includes security officers, auditors, human relations officers and compliance officers from other financial institutions along with representatives from law enforcement and prosecuting agencies. (Note - there may not be a local group in existence that you can join. Start one.)
Editor's Note - This series of training pages is for the new and/or experienced Security Officer.

Dana Turner is a security practitioner based in Pipe Creek, Texas. Dana has served as a law enforcement officer in several capacities - including the investigation of business and banking crimes - and he is celebrating his 34th year in crime. Dana has delivered thousands of platform, telephone and Internet presentations offered by state and national banking and credit union associations, state and federal examining and law enforcement agencies, and state and national security, audit and human resources organizations. Dana is the author of the Financial Institution Security Library, serves as one of the moderators in BankersOnline.com's Security Forum and is a contributor to the Bankers' Hotline. You may contact Dana by calling 830-535-6500 or emailing him at danaturner@email.com Copyright © 2004 Bankers' Hotline. Originally appeared in Bankers' Hotline, Vol. 14, No. 9, 11/04



Print Friendly! Email This Article! Discuss NOW!


Privacy Policy    Disclaimer   Recommend This Site !   Contact Us


BankersOnline is a free service made possible by the generous support of our advertisers and sponsors. Advertisers and sponsors are not responsible for site content. Please help us keep BankersOnline FREE to all banking professionals. Support our advertisers and sponsors by clicking through to learn more about their products and services.