Book Description Preventing Identity Theft in Your Business is a reliable guide to help protect companies, their customers, and their employees from the growing problem of identity theft. Real-life examples show managers and executives how to identify business, customer, and employee identity theft, how these crimes are committed, how best to prevent them, and overall, develop an honest company culture. It also covers how to manage this threat in business reorganizations such as mergers, acquisitions, globalization, and outsourcing. Show and hide more
Table of Contents
Cover Title Copyright Dedication ACKNOWLEDGMENTS PREFACE INTRODUCTION PART I: THE CURRENT STATE OF IDENTITY THEFT CHAPTER 1: WHAT IS AN “IDENTITY”? IDENTITY THEFT VERSUS IDENTITY CRIME “PERSONAL” IDENTITY THEFT “BUSINESS” IDENTITY THEFT IDENTITY THEFT AS AN “OVERARCHING” CRIME CHAPTER 2: IDENTITY THEFT: EFFECTS ON VICTIMS EFFECTS ON PERSONS EFFECTS ON BUSINESSES CHAPTER 3: IDENTITY CRIME IS ENTRENCHED HIPAA DATABASE CREDIT AGENCY DATABASES GOVERNMENT DATABASES CHAPTER 4: IDENTITY CRIMES ARE ESCALATING OUTSOURCING IDENTITIES JURISDICTIONAL PROBLEMS POLICE LACK RESOURCES LEGISLATION IS LACKING CHAPTER 5: LEGAL REQUIREMENTS FOR BUSINESSES MANY LAWS MANY “SUPERFICIAL” LAWS BISP SECURITY STANDARDS CHAPTER 6: CAVEAT LECTOR. LET THE READER BEWARE MESSAGE TO EXECUTIVES MESSAGE TO EMPLOYEES PART II: IDENTITY THEFT PREVENTION CHAPTER 7: THE BISP PLAN: TIGHTEN YOUR BUSINESS BORDERS BACKGROUND REVIEW: FOUR-FACTOR MODEL OF INFORMATION SECURITY SECURING THE FRONTS CHAPTER 8: BEGIN THE EXERCISES: IDENTIFY YOUR BUSINESS IDENTITIES STANDARD 1. WHAT ARE YOUR BUSINESS IDENTITIES? STANDARD 2. WHO HAS ACCESS TO YOUR BUSINESS IDENTITIES? CHAPTER 9: SECURING THE PEOPLE FRONT: THE SECURITY JOB ANALYSIS STANDARD 3. SCIENTIFIC JOB ANALYSIS FOR SECURITY DECISION MAKING CHAPTER 10: THE PEOPLE FRONT: RECRUITMENT FOR SECURITY STANDARD 4. RECRUITMENT FOR SECURITY CHAPTER 11: THE PEOPLE FRONT: PERSONNEL SELECTION FOR SECURITY STANDARD 5. PERSONNEL SELECTION FOR SECURITY CHAPTER 12: THE PEOPLE FRONT: SELECT FOR MOTIVATION STANDARD 6. SELECT FOR MOTIVATION CHAPTER 13: THE PEOPLE FRONT: SELECT FOR INTEGRITY AND SECURITY STANDARD 7. SELECT FOR INTEGRITY AND SECURITY CHAPTER 14: THE PEOPLE FRONT: SELECT FOR INTERPERSONAL SKILLS STANDARD 8. SELECT FOR INTERPERSONAL SKILLS CHAPTER 15: THE PEOPLE FRONT: SOCIALIZATION, COMPANY CULTURE, AND THE REALISTIC JOB PREVIEW STANDARD 9. COMPANY CULTURE AND THE REALISTIC JOB PREVIEW CHAPTER 16: THE PEOPLE FRONT: SOCIALIZING NEWCOMERS TO THE HONEST COMPANY CULTURE STANDARD 10. THE SECURITY ORIENTATION PROGRAM CHAPTER 17: THE PEOPLE FRONT: APPRAISAL AND FEEDBACK FOR PERFORMANCE AND SECURITY STANDARD 11. THE ORGANIZATIONAL APPRAISAL AND FEEDBACK SYSTEM INDIVIDUAL APPRAISAL GROUP APPRAISAL SELF-APPRAISAL DEPARTMENTAL ASSESSMENT A MESSAGE TO THE PROJECT TEAM CHAPTER 18: THE PROCESS FRONT: SECURE BUSINESS INFORMATION PROCESSES SELECT A NEW PROJECT TEAM QUALITY-TO-SECURITY TOOLS STANDARD 12. INFORMATION PROCESS RISK ASSESSMENT CHAPTER 19: THE PROPERTY FRONT: THE E-BUSINESS WEB SITE STANDARD 13. WEB SITE SECURITY ASSESSMENT PART III: MONITORING IDENTITY THEFT CHAPTER 20: THE CUSTOMER SECURITY PROGRAM STANDARD 14. CUSTOMER SECURITY PROGRAM CONCLUSION CHAPTER 21: E-COMMERCE “BEST PRACTICES” FOR CUSTOMERS STANDARD 15. E-COMMERCE “BEST PRACTICES” CHAPTER 22: THE LEGISLATIVE PROCESS STANDARD 16. IDENTITY THEFT LEGISLATIVE PROCESS CHAPTER 23: THE HIPAA DATABASE THE BISP SECURITY STANDARDS AND HIPAA APPENDICES APPENDIX A: THE SECURITY STANDARD CHECKLIST IDENTITY THEFT PREVENTION APPENDIX B: CHECKLIST OF TEAM PREREQUISITES APPENDIX C: STRUCTURED AND FORMAL BRAINSTORMING: STEP-BY-STEP INSTRUCTIONS DEFINITION OF FORMAL BRAINSTORMING STEP-BY-STEP INSTRUCTIONS APPENDIX D: CAUSE AND EFFECT ANALYSIS: STEP-BY-STEP INSTRUCTIONS APPENDIX E: THE SECURITY FOCUS GROUP INTERVIEW APPENDIX F: THE SECURITY JOB DESCRIPTION THE INFORMATION SECURITY RESEARCH INSTITUTE, LLC THE SECURITY JOB DESCRIPTION APPENDIX G: INDUSTRIAL AND ORGANIZATIONAL SPECIALISTS IN TEST DEVELOPMENT AND VALIDATION APPENDIX H: ONE COMPANY’S SHORT- AND LONG-TERM STRATEGIC PLAN APPENDIX I: THE INFORMATION PROCESS: DEFINITION, DESCRIPTION, AND ILLUSTRATION DEFINING THE INFORMATION PROCESS DESCRIBING AN INFORMATION PROCESS ILLUSTRATING THE INFORMATION PROCESS RISK ASSESSMENT A KEY POINT APPENDIX J: THE PARETO ANALYSIS: DEFINITION, DESCRIPTION, AND ILLUSTRATION DEFINING PARETO ANALYSIS DESCRIBING PARETO ANALYSIS ILLUSTRATING THE PARETO DIAGRAM APPENDIX K: FORERUNNERS IN THE SUPPORT OF IDENTITY THEFT LEGISLATION U.S. SENATORS STATE OFFICIALS OTHERS NOTES INDEX END USER LICENSE AGREEMENT