Advertisment

IT registry to enhance security: Nasscom BPO summit

author-image
CIOL Bureau
New Update

BANGALORE: The recent MSource security fraud perpetrated by employees had the Indian BPO industry sitting up and reviewing all their security processes. Nasscom on its part has decided to set up a centralized database of employees, which would give details of the candidate's background and education.

At the Nasscom summit session on data security, Mphasis chairman and CEO Jerry Rao relived what his company experiences during the crisis and touched on the measures the company is taking to avoid such incidents in future. “If we had an employee reference process with details like identification, fingerprinting and photos, this incident would not have happened.”

He added that a forensic audit of the company revealed other areas, which could prevent breaches. Rao called for employee training on ethics and also explaining the consequences of such cyber offenses. “Young people don't realize the consequences of irresponsible behavior.”



He also suggested for random intrusive security checks (frisking), but warned about the trade-offs like costs and employee ill will towards the employer. On the lesson learnt from the incident, Rao said that the company realized that they had to be open and not bury the issues. “We learnt to be open and pro-active on the issue. This is important because such occurrences could affect a company's reputation and relationship with customers.”



Ted Price, MD and head of global corporate security, Lehman Brothers stressed on the importance of brand protection. He warned about the dangers of not having a standard for employee screening. “I also notice that some BPOs merely do lip service on code of conduct. In addition, there are no deterrence programs,” he said.



Rao summed up the session saying that while were no easy answers to the issue of security the national employee database would be a good start in that direction.

tech-news