Statistics On Fraudulent Off-Line Debit Card Transactions
12/03/2001
I'm trying to find an industry standard on the percentage of off-line debit card transactions that are fraudulant to gross sales.
L. Michael Guard
Bio:
Lynndon Michael Guard has a unique combination of strengths in law and technology as a licensed patent attorney, seasoned banking and commercial lawyer, Certified Information Systems Security Professional, and a telecommunications expert.
Since 1982, Michael has had a varied law practice that has included commercial law, commercial litigation, corporate law, intellectual property law, and complex commercial transaction contracts. He has consulted with both individuals and corporations on patent, trademark and copyright applications, as well as patent and trademark disputes.
Michael earned an MS in Telecommunications Management from Oklahoma State University in December, with a 4.0 GPA and has completed most of the coursework toward a Ph.D. in the same field. He also serves as General Counsel and Chief Technology Officer of Glia Group, Inc.
A founding co-partner in a ten-year-old company called BankGuard Resources, Michael has also been involved in the development of educational resources for the banking industry, including training videos and seminars, has provided consulting on networking and network security issues, and has taught and written on various subjects of interest to bankers. He devotes substantial time these days to real estate investments.
Areas of Expertise:
Information Security
Information Security Training Video
Contact info:
You can contact Michael via email at mguard@gmail.com or by telephone at (405) 503-4737.
Questions Answered
Back Office Security Training
12/03/2001
What do you suggest for annual security training for back office (mostly non-customer contact) employees? We have completed the retail (front-line) training and robbery is not likely to effect the back office staff. Are we required to train the back office staff on robbery each year?
Security Policy vs. Information Security Policy
10/01/2001
I am updating our Security Policy and would like to find one or more sample Security Policies I could use to help me in this process. Also, now that we have an Information Security Policy and a Security Policy, I am somewhat confused as to what should be covered in what policy. There seems to be some crossover between the two.
E-commerce Enabled Web Hosting Contract
10/01/2001
Can you recommend a good source or template for creation of an e-commerce enabled web hosting contract thatprotects a bank against liability with regards to its customers?
The Future For Smart Cards
09/03/2001
Are smart cards still considered the wave of the future and what should be doing to prepare for them?
Examiner Watch: Is your IT Plan Ready?
09/03/2001
In a recent audit by the OTS I was asked to provide a seperate Strategic Plan for the IT area. Do you know where I can get a copy of one to use as a guideline, or an outling or format. I appreciate any help that you can provide.
Computer Intrusions: Regulatory Information and Responsibilities
08/06/2001
Are we required to notify our customers of possible computer intrusions? Where can I find regulatory information regarding intrusions or hacks and the notification of customers?
Web Site Live Help: A Good Idea?
08/06/2001
What do you think of Live Help features that can be added to your Internet site, and how would you staff and manage them? Can the Call Center staff handle this?
Customer Email Policy
08/06/2001
We have a message posted on our Web site that tells customers not to submit emails that contain sensitive or confidential information and that tells them not to use email for specific transaction-related requests. Our system gives us the capability of doing auto-responders to any email submitted. We have drafted an auto-responder that thanks the sender for their message, acknowledges that it was received, but basically reiterates our policy about how they shouldn't be sending confidential or sensitive information or anything about a specific transaction or account. It has been suggested that we might want to add something to it to say something like "We will not act upon email requests for funds transfers, stop payments, account closings, or fraud notifications. These must be done either in person, or by calling such and such number." I'd like to know whether you think this is a good approach or whether there's a better way to handle this. We almost considered not even posting an email address on our site at all to just stop the email.
Disclosing the SSN on UCC Documents
08/06/2001
What is your take on disclosing the SSN on UCC documents? Are ther any Privacy issues that arise there?
Pages
Banker Tools View All
A collection of useful resources for various areas of the bank which have been developed by members of the BankersOnline staff or have been created and contributed by users of the BankersOnline site.
Banker ToolsBanker Store View All
From training, policies, forms, and publications, to office products and occasional gifts, it’s available here:
Banker Storehot right now
Looking for effective, convenient training on a particular subject?
BOL Learning Connect offers more than 200 courses ON-DEMAND or on CD ROM from AML to Reg Z and every topic in between.