Startup Ctera will offer cloud storage through carriers

TECHNOLOGY
- Infrastructure
  - Network
  - Security
    - Virus
    - Intruder
    - Spyware
    - Spam
    - Theft
    - Disaster Recovery
    - Privacy
    - Regulatory Compliance
  - Client
    - Desktop
    - Laptop
    - Laptop - Macbook
    - PDA
  - Server
    - Load Balancing
  - Mobile
  - Operating Systems
    - Windows
    - Windows - Vista
    - Linux
    - Mac
    - Mac - Leopard
    - Unix
    - Other
  - Data Center
  - Virtualization
- Applications
  - SaaS
  - Cloud Computing
  - ERP
  - CRM
  - BI
  - BPM
  - KM
  - SCM
  - RFID
  - Middleware/EAI
  - Portals
    - B-to-B
    - Consumer
  - Inventory Management
  - Databases
  - Document Management
  - E-Business
  - Data Warehouse
- Development
  - Open Source
  - Eclipse
  - Java
  - .NET
  - Agile
  - Web Services
- Architecture
  - SOA
  - Enterprise Architecture
LEADERSHIP

IT DRILLDOWN

NEWSLETTERS

CIO.com updates, insights and advice on technology, management and your career.

RSS Feeds »

LEADERSHIP

CIO Executive Programs

The Leader in Face-to-Face Education for Senior Executives

Offering regional and national programs, CIO (and CSO) events bring together some of the most respected names and thought leaders in information technology and security. Presented by CIOs and other senior level executives, these invitation-only programs offer timely topics and strong networking. Learn More »

CIO Executive Council

A Peer-Advisory Service and Professional Association for CIOs

Social Responsibility's Strategic Benefits

December 15, 11:30 AM - 12:30 PM US/Eastern (GMT-5)

Join Ed Granger-Happ, CIO of Save the Children, for a discussion of how creating an organization that is socially responsible improves staffing, retention, leadership development and overall corporate health.

Working With and Communicating to Your Board of Directors

January 13, 2009, 4:00 PM - 5:00 PM US/Eastern (GMT-5)

CIO panelists who will share tips and experiences working with their boards: Twila Day of SYSCO; Jeff O'Hare, West Corp.; Marc West, formerly with H&R Block.

IT's Role in Growing Mid-Market Companies

January 14, 4:00 PM - 5:00 PM ET (GMT-5)

Mid-market Council members will share their companies' stories and challenges in driving or coping with growth. Panelists represent Veterinary Pet Insurance, Medicis Pharmaceutical, and Intrax Cultural Exchange.

More / Register »

Learn more about the CIO Executive Council »

RESOURCE CENTER

buy a link »

SUBSCRIBE TO CIO

Are you involved in setting the direction for your company's IT budget or strategy?

Apply today for a FREE subscription to CIO Magazine!

Subscription Services »

Reprints »

News

SociéTé GéNéRale Plans to Close Loopholes By Year End

French bank Société Générale expects to have remedies in place by year end for the technical and procedural flaws that allowed rogue trader Jérôme Kerviel to build a fraudulent trading position that cost the bank ¬4.9 billion (US$7.25 billion).

Leave a comment

By Peter Sayer

May 23, 2008 — IDG News Service —

French bank Société Générale expects to have remedies in place by year end for the technical and procedural flaws that allowed rogue trader Jérôme Kerviel to build a fraudulent trading position that cost the bank ¬4.9 billion (US$7.25 billion).

Late Friday, the bank published the final report of a special committee that investigated the fraud, along with a summary of auditor PriceWaterhouseCoopers' review of the new controls the company plans to implement, and another study by the bank's general inspection department.

That department said it has found evidence that points to Kerviel having an accomplice in the bank's middle office, but that it has been unable to question the employee concerned because of the ongoing criminal investigation into Kerviel's activities.

Kerviel's job as an arbitrage trader was to make transactions in pairs, buying and selling similar assets to exploit the minute and fleeting differences in prices that exist in markets. Instead, he took massive bets on the market moving in a particular direction, faking the paired transactions. He was discovered when those bets went wrong, exposing the bank to massive losses.

The special committee concluded that Kerviel was able to fake the transactions because he was inadequately supervised, and because his direct supervisor lacked the necessary trading experience: When challenged, Kerviel had been able to allay suspicion by producing what ultimately turned out to be faked e-mail messages justifying his position.

Nevertheless, the bank's risk control, financial and compliance departments, and its middle and back offices, generally followed the required procedures, the committee found -- although the procedures themselves were flawed, as they did not identify or stop Kerviel's activities. Kerviel, having previously worked in the back office, knew how to avoid many of the controls. For example, knowing that certain transactions were only verified at the end of the month, he would cancel the fictitious part of a pair of trades just before the check, replacing them with new ones before the bank's risk management system noticed the unpaired trades.

Within weeks of discovering the fraud, the bank put in place a 10-point plan to reinforce control procedures and has since decided on further steps to prevent a repeat occurrence. Many of these controls are now in place and the bank expects to have the others ready by the end of the year, according to the committee's report.

In the future, the bank will regularly change the passwords on sensitive applications and will reinforce access controls on the most sensitive. It will also introduce controls on the cancellation or modification of transactions and prevent front-office workers from changing the parameters of the middle-office applications that monitor them.