Does anyone use Q2 for their online banking product? If so do you use the manual or end-to-end process? Management is tending towards the end-to-end process here, which would make things more automated, however during the application process the member is required to enter only three things: SSN, mother's maiden name, and email address. As long as all of those things match our core, everything will pre-populate in their application and when they are done, the application is approved and they can gain access. With all of the FFIEC guidance out their regarding authentication, I'm just not viewing this as a strongly controlled process. All of these items are what the member "knows" and aren't very difficult these days to obtain fraudulently. Anybody have the same process or thoughts on this one?? -------Kathie
July 17, 2012 - 11:42am
#1
