Yesterday we had an impossibly pedantic meeting at work where a “security expert” explained what testing needed to be completed to gain a given level of accreditation. Basically, what he said was that no matter what we did to ring-fence any aspect of the system, everything that could be accessed via the network needed to be tested to the same degree. And even then we might miss something so consequently it still couldn’t be accredited.
Then one of the team found this Dilbert that made us laugh, I thought it was worth sharing…
It seems that the “security expert” was correct?! Not sure the non-IT people will get it, but sometimes it is possible to go just too far! Sure, if we were building a system that handled ultra-sensitive or mega-valuable data, but we are not – it’s just a pretty ordinary call centre solution.
Pete,
Tell your security expert that he can protect the system by not connecting it to any type of phone line or network. Nothing will be able to get in, the system will be safe.
I think this is the way ahead for all call centres 💡
Colin.