09/20/2004
I'm trying to give some input on our Bank's strategic plan. Could you advise me on the important changes in technology that we might be seeing within the next three years? Thank you.
05/03/2004
I need to update our information technology policy/information security policy. Can you refer me to any online which I can view for ideas and content?
03/15/2004
Several employees are carrying "take home" bank keys on their personal key rings - along with house and car keys. I would like to stop this practice to keep the keys separate and not in use when out of the bank. I cannot find any reference material on this. What do you think of stopping this practice?
02/16/2004
Our bank is rewriting our security policy/procedures. Basically, we are starting from ground zero and now have a Security Director who will oversee the security program for the bank. Do you have any reference material or pointers on whow to begin building this department?
01/01/2004
- Identity theft victims spend about 30 hours canceling accounts and filing reports.USA Today, Citibank Research, 12/14/03
11/17/2003
We have had a few customers come in and make us aware of some unauthorized transactions done with their ATM card which they still have in their possession. When the customer has their card and the transaction is in Europe and the customer hasn't been traveling, why isn't this a valid dispute? I understand that as a Financial Institution offering the ATM product there is some risk involved. But at the same time when you can't dispute even the most obvious of unauthorized transactions, I question why the entire loss falls on the Financial Institution. Our card processors can tell us about skimming, but don't have any make exception to disputes. What types of technology is coming out that would prohibit this from happening and when will they receive it?
11/17/2003
I was about to implement a new security change for my company. The change will involve new security access to certain folders. Before the change, I emailed all the managers of each department as to what will happen and when it will be implemented. The change was done over the weekend. On Monday morning, the Accounting Manager goes to my boss and me to complain about not being able to access certain folders on the network that are very crucial for the Accounting department, because the Accounting Manager did not received the email. The security implementation is now supposed to be reworked. Could this issue be prevented? If so, what are the facts, inferences, assumptions, options, evaluations, and viewpoints?
11/01/2003
In the United States, hundreds of public and private corporations and manufacturers offer coupon discounts for products sold in retail stores.
09/01/2003
Commonly cited violations have long been a source of important information for the design and management of compliance programs.
08/04/2003
I am in the process of revamping the policies for our IT department. These policies include Information Security Program, Internet Usage, E-Risk, Disaster Recovery, On-Line Privacy, EDP/End User, and Electronic Banking. Do you have any suggestions on where I can get templates for these policies?