Rou

Ranting. Raving. Screaming at the stars!

A little note about proper procedure....

08/04/05

Permalink 06:13:09 pm, by Roulette Email , 247 words, 45 views   English (US)
Categories: Work

A little note about proper procedure....

So, let's say you were a manager at a company. One with lots of financial and personal information of it's cliental. As a manager you hire a contractor to fill a temporary void in your staffing. Call it a 3 month contract deal.

Now, your company has very strict rules about access restrictions, due to the information that is available.

As a manager, which of the following seems appropriate:
A: Follow the guidelines and file a request for access for the contractor. That process could take over a month.
B: Allow the contractor to use a terminal you log in and maintain careful supervision of him while he works.
C: Give your login information to the contractor to allow him to access what he wants at his whim.

If you answered C, don't be surprised when it comes back to haunt you. As it did recently in a case I had to deal with. You see, said contractor was arrested for a number of really serious while collar crimes associated with his previous employment. So now the happy manager is in the middle of a huge investigation that will result in his termination. That's already been decided, though I doubt he knows it.

So, lesson to the masses... those procedures, while often asinine and annoying, are generally there for a reason. Just a friendly piece of advice from your neighborhood guy that has to deal with this crap. I don't enjoy it when police need my testimony, k?

PermalinkPermalink 2 comments

Comments, Pingbacks:

Comment from: u235 [Member] Email
Dammit. Now how am -I- supposed to rest at night? There's no knowing whose data this guy might have filched. Will the company notify it's customers, or at least the people whose files the guy might have accessed that their data might have been compromised?

Jezus. You hear so much about identity theft, and what it does to people. It's shit like this that ALLOWS it to happen. If you need to circumvent a procedure then you better have a damn good reason, a full understanding of the consequences AND be willing to suffer the result if shit goes down.
PermalinkPermalink 08/04/05 @ 19:51
Comment from: Roulette [Member] Email
You probably don't use this company, it is primarily overseas buisness. they have not decided on a notification. first they have to determine if anything happened at all. it's possible this guy was 100% legit while on this contract.

Either way, the manager is fired.
PermalinkPermalink 08/04/05 @ 20:16

Leave a comment:

Your email address will not be displayed on this site.
Your URL will be displayed.

Allowed XHTML tags: <p, ul, ol, li, dl, dt, dd, address, blockquote, ins, del, span, bdo, br, em, strong, dfn, code, samp, kdb, var, cite, abbr, acronym, q, sub, sup, tt, i, b, big, small>
(Line breaks become <br />)
(Set cookies for name, email and url)
(Allow users to contact you through a message form (your email will NOT be displayed.))

Rou

July 2008
Mon Tue Wed Thu Fri Sat Sun
 << <   > >>
  1 2 3 4 5 6
7 8 9 10 11 12 13
14 15 16 17 18 19 20
21 22 23 24 25 26 27
28 29 30 31      

Search




Categories

Archives

Misc

XML Feeds

What is RSS?

Who's Online?

  • Guest Users: 18

powered by b2evolution free blog software