Strategic CIO // Executive Insights & Innovation
News
3/25/2014
09:06 AM
Doug Henschen
Doug Henschen
Slideshows
Connect Directly
LinkedIn
Twitter
Google+
RSS
E-Mail
50%
50%

10 Ways To Fight Digital Theft & Fraud

IBM touts holistic approach to cyber-security, counter-fraud, and compliance efforts. Bankers, security experts, and a former White House CIO offer proactive advice.
Previous
1 of 11
Next

The best way to thwart digital theft and fraud is to use a holistic, connected approach that takes advantage of the latest technologies and applies advanced analytics to vast data sets. It's an approach IBM touted at a mid-March event in New York where it brought together more than 100 security, compliance, and risk-management professionals.

IBM promoted new software and services designed to support this approach. Experts, including a former White House CIO and executives from banks, insurance companies, security firms, and government agencies, offered tips and best practices for moving beyond security, fraud, compliance, and risk silos. The stakes are higher than ever, with increasingly sophisticated and global digital criminals now responsible for some $3.5 trillion in losses each year, according the Association of Certified Fraud Examiners.

The most important advice is to break out of departmental silos. It's not that you should consolidate separate departments that address, for example, cybersecurity, fraud, and anti-money-laundering compliance efforts. But these separate groups should collaborate, with shared data, measures, goals, and coordinated incentives.

"If you start sharing information and thinking through processes across that data, it will help you to bust out of those silos," said Theresa Payton, who served as White House CIO from 2006 to 2008. Payton cited two organizations that created working teams across physical security, cybersecurity, anti-money-laundering, fraud, and risk departments. Collaboration helped one of these organizations, a defense contractor, spot a shell company posing as a supplier. As a result, the firm avoided a $500,000 wire transfer tied to a falsified purchase order, according to Payton.

Once you can span silos and share data, the next step is to apply advanced analytics to spot crime. Last year Atlanta-based SunTrust Bank was able to work across departments, pool information, and apply big data analyses to foil a sophisticated deposit-fraud scheme.

"These fraudsters knew more about our bank than some of our own people knew about how we post money to accounts," said speaker Aaron Glover, a senior analyst at SunTrust. "We discovered that we could work better together by establishing protocols for information sharing across anti-money-laundering, corporate security, and the fraud unit."

The upshot was that SunTrust was able to pool a variety of data sets, develop deep analyses to uncover the fraud patterns, and institute procedural changes to thwart the fraudulent deposits. "As a result we were able to save $5.8 million within one year," Glover said.

The New York State Department of Taxation and Finance uses advanced analytics and case-management capabilities -- core components of the Counter Fraud Management Software that IBM introduced -- to thwart $350 million in fraudulent tax refunds per year. Internal auditors who recovered an average of $500,000 per auditor per year a few years ago are now recovering $2.5 million per year due to case-management workflow automation and analytics that flag suspicious returns, said Nonie Manion, the department's executive deputy commissioner.

Other steps experts suggest include identifying and prioritizing the assets you must protect, holding "doomsday" drills to determine how departments will handle an incident, reviewing security policies and procedures with all employees, and working with law-enforcement and security groups to get ahead of cybercrime and fraud schemes. Read on for practical tips and technology advice that your teams can put into practice.

Doug Henschen is Executive Editor of InformationWeek, where he covers the intersection of enterprise applications with information management, business intelligence, big data and analytics. He previously served as editor in chief of Intelligent Enterprise, editor in chief of ... View Full Bio

Previous
1 of 11
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
pfretty
50%
50%
pfretty,
User Rank: Moderator
4/1/2014 | 12:40:08 PM
Great advice
The cost of digital theft as reported in the HP Ponemon Cost of Cyber Crime report (http://www.hpenterprisesecurity.com/ponemon-study-2013) is climbing at unprecedented rates (30% in 2013). Technology is obviously part of the equation, but education and awareness are crucial. People need to understand the important role they play in building a solid sustainable defence.

Peter Fretty, j.mp/pfrettyhp

 
andrewboon2739
50%
50%
andrewboon2739,
User Rank: Apprentice
3/27/2014 | 4:21:49 AM
Preventing fraud in governmental entities.
 Interesting article.  Governmental entities can use  technology to eliminate fraud , it is now getting harder to spot and mitigate fraud and any help in this regard will go a long way in reducing fraud. I work for McGladrey and there's a whitepaper on our site that discusses a few points here that may interest readers, it offers valuable advice on preventing fraud in governmental entities. @ "Preventing fraud in governmental entities" http://bit.ly/1luoSJJ
codyhalter281
50%
50%
codyhalter281,
User Rank: Apprentice
3/25/2014 | 2:02:02 PM
Let See
just as Rebecca said I can't believe that you able to get paid $8327 in four weeks on the computer . site here>
>>>>>> w­w­­w­.­b­a­y­9­1­.­C­ℴ­M
D. Henschen
50%
50%
D. Henschen,
User Rank: Author
3/25/2014 | 12:09:10 PM
Silo approach all too common
I met a few cybersecurity, fraud and anti-money laundering execs at this event and the general sentiment was that they talk to their colleagues in the other areas, but they don't really have formalized and structured sharing of data and collaboration backed by shared incentives, measures and goals? Is this feel-good rhetoric, readers, or have you seen some of the collaborative successes reported by speakers at this event (SunTrust, NYS Office of Medicade, Westfield Insurance, IBM, etc.)?
The Business of Going Digital
The Business of Going Digital
Digital business isn't about changing code; it's about changing what legacy sales, distribution, customer service, and product groups do in the new digital age. It's about bringing big data analytics, mobile, social, marketing automation, cloud computing, and the app economy together to launch new products and services. We're seeing new titles in this digital revolution, new responsibilities, new business models, and major shifts in technology spending.
Register for InformationWeek Newsletters
White Papers
Current Issue
InformationWeek Tech Digest - August 27, 2014
Who wins in cloud price wars? Short answer: not IT. Enterprises don't want bare-bones IaaS. Providers must focus on support, not undercutting rivals.
Flash Poll
Video
Slideshows
Twitter Feed
InformationWeek Radio
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.