registerme
Member of DD Central
Posts: 6,624 
Likes: 6,436
|
Post by registerme on Nov 2, 2015 11:14:54 GMT
The way to address that particular risk is to invest in what is known as a "break glass" system. This will only release single / time-box use admin accounts and passwords for use on production systems on successful sign off via the change control process. It's a pita for the people managing your IT infrastructure but it does all but eliminate the risk that James mentioned.
|
|
|
|
Post by domUP on Nov 2, 2015 13:02:51 GMT
On a Saturday of a bank holiday weekend a person at your business with signing authority who sadly has developed gambling problems (or whatever else you care to substitute, from drugs to whatever) willingly works with a criminal gang that kidnaps the wife and children of another person with signing authority and your database administrator. How effective will your controls be with all three individuals using the long weekend and following work day to try to subvert them and divert as much money as possible to an account controlled by fraudsters? Heaven forbid this dastardly plot comes to life. I’ll go into a little bit of detail here – I’m reluctant to get too detailed and publish all our systems and controls online. Essentially, you’d need one subverted senior member of staff and another who’s been kidnapped and whose family is at risk. BUT, this would only give you the ability to place bids... not divert funds… yet. In order to divert funds, you need to have access to another separate part of the system, which is more encrypted, but has similar access protocols. But, how about this. James (CEO), Will (Op’s) and I are on our way to Websummit and whilst sipping our coffees in Stanstad have agreed that, we will speak with Chris this week and make sure that to update users’ banks details requires sign-off by 4 members of senior management. Bank details change requests are so rare we don't mind this. Changing bank details from this day forth will require four separate authentication codes that are specific to each member of senior staff’s smartphones – as well as requiring the less exotic admin persons password. This message will self destruct in 2 weeks.
|
|
