Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

>Access to pre-production should be limited.

Banks have extremely strict rules when it comes to system "access".

When it comes to "System Design" they have very little.

This are two separates topic.



> Banks have extremely strict rules when it comes to system "access".

Isn't that's because of SOX compliance requirements?

So, the point above is that "a new set of requirements" could be added regarding "data store software integrity" (though probably named better) if it turns out to be needed. :)


> Isn't that's because of SOX compliance requirements?

Bank always had very strict rules , SOX just force them to formalize those rules/process.

Per say , prior to SOX they would not conceal the review of the logs , now with SOX they will will edit a PDF that say "We have review logs for Apps X and consider no suspicious activity had occur".

Apart from that , things didn't change much.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: