sunhux
asked on
Best practice to secure sensitive private info (eg: Panama papers case)
Private banks have this 'high nett worth individuals info' which sometimes banks
print out (I happen to be one IT guy who has to print it out) & saw names of those
clients including the amounts they deposit with the bank.
What's the best way to secure this so that only the parties who need it can view it
& to prevent incidents like Panama papers & about 9 years ago, Citibank Japan's
leaks of such info?
a) should it be printed on hardcopies & if so, on 'sealed papers' (which are carbon
copied ie not visible unless we tear the seal) are safe enough? Thing is I've seen
operators who placed carbon papers on printers to get a duplicate set of printout
b) if not good to print hardcopies, then print in softcopies (PDF that has what sort
of security feature to prevent tampering) that are protected/encrypted with
password? How is the password set such that only authorized individuals
know the password & not the IT operators / support?
c) if softcopy encrypted PDFs are sent to the authorized parties, what's the secure
ways for them to print them out?
d) any 'secure' printers to propose (with URL/links) ie doesnt print out ink but sort
of 'hard stamping' the characters out only so that it's carbon copied into sealed
papers (like payslips)
e) if payroll processing/payslip printing is outsourced, what's the best practices
for the outsourced vendors?
do elaborate any other measures / best practices as some of the past practices
are now probably not good enough
print out (I happen to be one IT guy who has to print it out) & saw names of those
clients including the amounts they deposit with the bank.
What's the best way to secure this so that only the parties who need it can view it
& to prevent incidents like Panama papers & about 9 years ago, Citibank Japan's
leaks of such info?
a) should it be printed on hardcopies & if so, on 'sealed papers' (which are carbon
copied ie not visible unless we tear the seal) are safe enough? Thing is I've seen
operators who placed carbon papers on printers to get a duplicate set of printout
b) if not good to print hardcopies, then print in softcopies (PDF that has what sort
of security feature to prevent tampering) that are protected/encrypted with
password? How is the password set such that only authorized individuals
know the password & not the IT operators / support?
c) if softcopy encrypted PDFs are sent to the authorized parties, what's the secure
ways for them to print them out?
d) any 'secure' printers to propose (with URL/links) ie doesnt print out ink but sort
of 'hard stamping' the characters out only so that it's carbon copied into sealed
papers (like payslips)
e) if payroll processing/payslip printing is outsourced, what's the best practices
for the outsourced vendors?
do elaborate any other measures / best practices as some of the past practices
are now probably not good enough
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
The main goal for companies is to embark on a regime such that there is oversight for measuring processes to continually assess their systems for security and other IT risks before entering new application code developed or outsourced into their own live production and exposing it to users. Know the root cause and prevent it from recurring, the other is more of safeguards to reduce exposure as discussed already.