Weak link

The big hacks catch our attention.  But what about the little leaks?

Bank Tellers Draw Scrutiny Over Security,” The Wall Street Journal, June 8, 2015 C3. New York to look at what controls banks put on information that tellers may access.

Should banks be concerned if a teller looks up information on a whole bunch of customers that the teller doesn’t service?  Should you?

Is this an access issue or a duty-to-protect issue?  Or something else?

Leave a comment

Filed under Access, Board, Business Case, Collect, Compliance, Controls, Duty of Care, Governance, HR, Information, Interconnections, Internal controls, IT, Management, Oversight, Oversight, Privacy, Protect, Protect assets, Protect information assets, Risk, Security, Use, Value

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s