Presentation is loading. Please wait.

Presentation is loading. Please wait.

Identity Fraud Prevention 1 Copyright Identity Management Institute®

Published byMabel Blair Modified over 9 years ago

Similar presentations

Presentation on theme: "Identity Fraud Prevention 1 Copyright Identity Management Institute®"— Presentation transcript:

1 Identity Fraud Prevention 1 Copyright Identity Management Institute®

2 Presentation Overview Course Objective 2013 Data Breaches 2013 Identity Fraud Data Identity Fraud Prevention Techniques Audit Considerations Quiz Certified Red Flag Specialist (CRFS) ® Raffle Questions 2 Copyright Identity Management Institute®

3 Course Objective The main topic of this session is to discuss: Identity fraud prevention techniques (and more) **This session excludes information security controls. The Key points to remember are: Personal information continues to be stolen despite our efforts Identity fraud is rising Regulations and focus will increase because consequences include: Consumers are impacted in large numbers Expectation for government assistance is high Business losses justify prevention. (Lower margins, bad publicity, lawsuits, fines and penalties, lost customers, and lower revenues) 3 Copyright Identity Management Institute®

4 2013 Data Breaches 2164 separate incidents, 822 million records lost or stolen (double since 2011) Hacking accounted for 60% of all cases Just a few cases accounted for most damage: o Target, Adobe, JP Morgan Chase, Facebook, IRS US leads the way - 48.7% of total incidents, and 66.5% of all lost records o UK was 2 nd and South Korea 3 rd with just one massive incident (credit bureau employee stole and sold 20 million customer card information) 4 Copyright Identity Management Institute®

5 2013 Identity Fraud Data Stolen personal records lead to: More than 12 million victims of identity fraud annually Over $50 billion in identity fraud losses Increased need for resources:  IRS employing 3000 employees to just work on identity theft cases who: o Detected 14 million suspicious tax returns o Prevented $50 billion in fraudulent refunds 5 Copyright Identity Management Institute®

6 Red Flag Categories Copyright Identity Management Institute® 6 There are 5 Red Flag categories to which we must pay attention: 1. Alerts received from consumer reporting agencies or service providers. 2. The presentation of suspicious documents. 3. The presentation of suspicious personal information. 4. Unusual and suspicious activity. 5. Notices from customers, law enforcement authorities, or other persons regarding possible identity theft.

7 Consumer Reporting Agency Alerts Copyright Identity Management Institute® 7 Consumer reporting agency alerts and reports often include information which can be used to detect identity theft. 1. Fraud alert placed by consumers. 2. Notice of credit freeze in response to a request for a consumer report. 3. Notice of address discrepancy. 4. Unusual pattern of activity such as: a. A recent and significant increase in the volume of inquiries; b. An unusual number of new accounts; c. A material change in the use of credit, especially with respect to recently established credit relationships; or d. An account that was closed for cause or identified for abuse of account privileges by a financial institution or creditor.

8 Suspicious Documents Copyright Identity Management Institute® 8 1. Identification documents or applications appear to have been altered, forged or reassembled. 2. The photograph or physical description on the identification is not consistent with the appearance of the applicant. 3. Information on the identification is not consistent with information provided by the person. 4. Information on the identification is not consistent with readily accessible information that is on file such as a signature card or a recent check.

9 Suspicious Information Copyright Identity Management Institute® 9 1. Personal identifying information provided is inconsistent. For example: a. SSN is other than 9 digits b. Zip code does not match the address location 2. Personal identifying information provided by the customer is not valid. For example: a. Phone number, address or SSN do not exist b. SSN is listed on the Social Security Administration's Death Master File 3. Personal identifying information provided is associated with known fraudulent activity. For example: a. The address or phone number on an application is the same as the information provided on a fraudulent application.

10 Suspicious Information – Cont. Copyright Identity Management Institute® 10 4. Duplicate SSN, phone number or address provided are the same as that submitted by other persons opening an account or existing customers. 5. The person opening the account or the customer fails to provide all required personal identifying information on an application or in response to notification that the application is incomplete. 6. The person opening the account or the customer cannot provide authenticating information beyond that which generally would be available from a wallet or consumer report. (Crook on the phone)

11 Suspicious Account Activity Copyright Identity Management Institute® 11 Shortly following the notice of a change of address, the institution receives a request for a new, additional, or replacement card, cell phone, and/or users on the account. Company must validate within 30 days. A new revolving credit account is used in a manner commonly associated with known patterns of fraud patterns. For example: The majority of credit available for cash is used The majority of available credit is used to purchase merchandise that is easily convertible to cash (e.g., electronics equipment or jewelry); or The customer fails to make the first payment or makes an initial payment but no subsequent payments.

12 Suspicious Account Activity – Cont. Copyright Identity Management Institute® 12 An account usage is inconsistent with established patterns of activity: a. Nonpayment when there is no history of late or missed payments, b. A material increase in the use of available credit or cell phone account, c. A material change in purchasing or spending patterns, d. A material change in electronic fund transfer patterns in connection with a deposit account. A covered account that has been inactive for a reasonably lengthy period of time is used. Mail sent to the customer is returned repeatedly as undeliverable and transactions are occurring. The company is notified that the customer is not receiving paper account statements. **The company is notified of unauthorized transactions.

13 Don’t Forget Service Providers Copyright Identity Management Institute® 13 The company remains responsible for preventing fraud even if it outsources operations to a third party service provider. The written agreement between the company and the third party service providers must require the third parties to: a) Have reasonable policies and procedures designed to identify, detect and respond to identity theft red flags. b) Share its identity theft prevention program at the request of the company. c) Communicate major incidents and/or control deficiencies which may adversely affect the company and its customers.

14 Identification & Authentication Copyright Identity Management Institute® 14 Key controls include: Obtain and verify customer identification Authenticate customers in person, by phone, mail, and online  Consider FFIEC guidelines for online multi-factor authentication Monitor transactions Follow up on alerts and notices Validate change of address requests

15 Audit Considerations Copyright Identity Management Institute® 15 Written and updated Identity Theft Prevention Program Oversight body approval initially and for updates Periodic risk assessments Policies and procedures Annual compliance report Employee training Address discrepancy notices received from credit reporting agencies. Keep an eye on service providers

16 Regulation In response to record breaking identity theft cases and consumer impact, the US Federal government introduced the Red Flags Rule to require the implementation of an identity theft prevention program in companies where consumers may be adversely affected by identity theft. 16 Copyright Identity Management Institute®

17 Professional Certification Copyright Identity Management Institute® The Certified Red Flag Specialist (CRFS) ® designation is a registered trademark of Identity Management Institute ® and is the leading identity theft prevention training and certification program which is closely aligned with the Red Flags Rule. Visit the IMI website to learn more: www.theimi.org 17

18 Quiz 1 Copyright Identity Management Institute® 18 Which of the following is considered a “Red Flag” which may indicate the possibility of identity theft? □ High volume of c ustomer service calls □ Credit line increase request □ High volume of inquiries in the credit report

19 Quiz 2 Copyright Identity Management Institute® 19 The identity theft prevention program must be: □ Approved annually □ In writing □ Updated annually □ All of the above

20 Raffle Copyright Identity Management Institute® 20 Send an email to info@theimi.org with name, company and title by Friday 4/4/14. Write “IIA Raffle” in the subject line.info@theimi.org 2 persons will be selected in April 2014 to waive the membership and CRFS application fees.

21 Questions Copyright Identity Management Institute® 21 Thank you for your participation.

Download ppt "Identity Fraud Prevention 1 Copyright Identity Management Institute®"

Similar presentations

Property Inventory Valuation Replacement Cost Value The amount it would take to replace property with like property of the same quality and construction.

Property Inventory Valuation Replacement Cost Value The amount it would take to replace property with like property of the same quality and construction.
Identity theft Protecting your credit identity. Identity Theft Three hundred forty three million was lost from consumers in 2002 The number of complaints.

Identity theft Protecting your credit identity. Identity Theft Three hundred forty three million was lost from consumers in 2002 The number of complaints.
JPMorgan Chase Purchasing Card Training

JPMorgan Chase Purchasing Card Training
Fair Credit Reporting Act You must be told if information in your file has been used against you You can find out what is in your file You can dispute.

Fair Credit Reporting Act You must be told if information in your file has been used against you You can find out what is in your file You can dispute.
UNDERSTANDING RED FLAG REGULATIONS AND ENSURING COMPLIANCE University of Washington Red Flag Rules Protecting Against Identity Fraud.

UNDERSTANDING RED FLAG REGULATIONS AND ENSURING COMPLIANCE University of Washington Red Flag Rules Protecting Against Identity Fraud.
Red Flags Compliance BANKERS ADVISORY 1 Red Flags Compliance Fair & Accurate Credit Transactions Act (FACTA) Identity Theft Prevention.

Red Flags Compliance BANKERS ADVISORY 1 Red Flags Compliance Fair & Accurate Credit Transactions Act (FACTA) Identity Theft Prevention.
Compliance with Federal Trade Commission’s “Red Flag Rule”

Compliance with Federal Trade Commission’s “Red Flag Rule”
Red Flags Rule BAS Forum August 18, 2010. What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.

Red Flags Rule BAS Forum August 18, What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.
Detecting, Preventing and Mitigating Identity Theft Presented by the Bursar’s Office.

Detecting, Preventing and Mitigating Identity Theft Presented by the Bursar’s Office.
1 Identity Theft Program Procedures Viewing RED FLAGS in the MEDITECH System.

1 Identity Theft Program Procedures Viewing RED FLAGS in the MEDITECH System.
Red Flag Rules: What they are? & What you need to do

Red Flag Rules: What they are? & What you need to do
Red Flag Identity Theft Training California State University, Fullerton Campus Information Technology Training August 2012.

Red Flag Identity Theft Training California State University, Fullerton Campus Information Technology Training August 2012.
FAIR AND ACCURATE CREDIT TRANSACTIONS ACT (FACTA)- RED FLAG RULES University of Washington Red Flag Rules Protecting Against Identity Fraud.

FAIR AND ACCURATE CREDIT TRANSACTIONS ACT (FACTA)- RED FLAG RULES University of Washington Red Flag Rules Protecting Against Identity Fraud.
The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.

The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.
Paychecks and Tax Forms. Where Does My Money Go? Almost 31% of an individual’s paycheck is deducted  Taxes are the largest expense most individuals will.

Paychecks and Tax Forms. Where Does My Money Go? Almost 31% of an individual’s paycheck is deducted  Taxes are the largest expense most individuals will.
Are You Ready? Identity fraud and identity management are quickly becoming critical operational concerns for the financial industry. The Red Flags Guidelines.

Are You Ready? Identity fraud and identity management are quickly becoming critical operational concerns for the financial industry. The Red Flags Guidelines.
Time to Wave the White Flag – Compliance with the FTC’s Identity Theft Red Flags Rule William P. Dillon, Esq. Messer, Caparello & Self, P.A. 2618 Centennial.

Time to Wave the White Flag – Compliance with the FTC’s Identity Theft Red Flags Rule William P. Dillon, Esq. Messer, Caparello & Self, P.A Centennial.
©2012 CliftonLarsonAllen LLP 1 111 Red Flags- Why This Matters to You An overview of the FACT Act Identity Theft Red Flag Rule and its current impact.

©2012 CliftonLarsonAllen LLP Red Flags- Why This Matters to You An overview of the FACT Act Identity Theft Red Flag Rule and its current impact.
Identity Theft “Red Flags” Rules Under the FACT Act Reid Fudge CISSP, CISA Pulte Mortgage, LLC November 2008.

Identity Theft “Red Flags” Rules Under the FACT Act Reid Fudge CISSP, CISA Pulte Mortgage, LLC November 2008.
The Minnesota State Colleges and Universities system is an Equal Opportunity employer and educator. The Red Flag Rule Detecting, Preventing, and Mitigating.

The Minnesota State Colleges and Universities system is an Equal Opportunity employer and educator. The Red Flag Rule Detecting, Preventing, and Mitigating.

Similar presentations

Ads by Google