Major business policies, especially in financial services, are often driven by some simple parameters that are executed in software. E.g., for a lender, what interest rate is being charged.
There is typically a dashboard accessible to a small number of users with authorized elevations, to enter these values. In general, that works fine, but there may be concerns about data-entry mistakes or deliberate sabotage (less probable). I think a good solution involves:
- Purpose-built UI (console), limited of course to an appropriate, small user group.
- Require multi-factor -entry to implement a change: i.e., 2 or more members have to independently submit the update (exact number is configurable, depending on the sensitivity--but in general, I think 2 is the magic number).
- Add some UX niceties for workflow—e.g., showing pending updates where only 1 entry has been made, reminders if 2nd entry is overdue.
- Email the entire group whenever a change is initiated and completed.
Posts
No comments:
Post a Comment