When someone says (from IT) that Access is not a secure platform what do you think they mean?
This is in comparison to another db that is running on Oracle called CSM.
I would think that if you can hack into Access then it is not the fault of Access but the security of the network?
this was an email from IT:
While CSM seems to be a bit less user-friendly than the Access database, it is written on a supported Oracle platform and is supported and maintained by IT. The maintenance includes regular backups of the server and data, and the structure of the application itself plus the fact that it resides in an Oracle database ensures that the information stored there is secure. Oracle application security is applied to all users of the system.
The Access database appears to be straight-forward to use and has good, quick reports. However, Access, as a general rule, is not very secure. The application is being stored on the C: drive of his computer, which is not backed up and risks corruption. Even if the application were stored on a network drive that is backed up, there are multiple ways to access the information without going through the front-end that he created. It is very difficult to ensure that data kept in an Access database is truly secure. Finally, IT, as a rule, does not support Access databases. Should something happen to the application, you would not be able to call on IT for quick support.
From a security point of view, It is my recommendation that you continue to use the CSM application.