How To

How to Stop a Thief by Thinking Like a Thief

Connie Veates, assistant VP of corporate security and business continuity at BellSouth, developed a comprehensive antifraud program. The cornerstone of that program is the teams ability to think like a thief.

By CSO Contributor

December 01, 2006CSO

Know your fraud

Just as a chess master understands the numerable but finite opening sequences to a chess game, an

antifraud professional should know the numerable but finite fraud schemes. Connie Veates relies on a

fraud taxonomy with six classes of fraud and 123 distinct species. Those include many types of

inventory fraud, manifold check-kiting schemes and techniques with colorful names like cash lapping.

The beauty of a taxonomy is that it's universal. Naturalists can classify newly discovered flora and fauna

in the existing Linnaean system. Likewise, newly discovered fraud schemes are just fresh takes on

established schemes in Veates' taxonomy.

Divide and conquer

While members of her team understand these 123 frauds generally, that's a lot of crimes to master. So

Veates commissions specific team members to become subject matter experts. The goal is to have one

person thinking like a specific kind of thief rather than everyone thinking about fraudsters in general.

This expert will gain a deep understanding of a specific kind of fraud, the type of person who commits

it and his motivation, and tools and techniques to combat it. Veates says, "We'll have one person focus

on inventory fraud, and they'll know to periodically check eBay, for example, to see if goods are being

sold there illegally. We'll have another who knows benefits fraud inside and out, and so forth."

Learn a little psychology

To think like a thief, you have to know how a thief's mind works. The best place to start is with Dr.

Donald Cressey's landmark work on the psychology of fraud and his "fraud triangle." According to

Cressey, the three elements of all fraud are opportunity, motivation and rationalization.

Don't trust your instincts

Sometimes we associate thinking like a thief with thinking like a bad guy, but they are not one and the

same. In order to successfully understand fraud, you need to throw out some prejudices about the type

of person who commits fraud. To start, it's rarely a bad guy, a malicious person with purely malicious

intent. "I started in this thinking only bad people committed fraud," Veates says. "In fact it's usually

good people who make a bad decision and a bad rationalization, who think the pain they're causing is

less than the gain they get. They could be a company's board member. These are usually fairly

intelligent people. Typically male, higher up in the organization and typically, for internal fraud, they

have long tenures at the company." In other words, fraudsters are criminals but not archetypical

criminals. Rather, they're the same people you work with, have lunch with and socialize with every day.

RESOURCE CENTER
Loading...
VIRTUAL CONFERENCE
Data Center Directions Virtual Conference

Data Center VCAttend this free, 100% online event exploring tools and techniques for making your data center deliver for today and tomorrow.

» Learn more and register here

WHITE PAPER
Maximizing Site Visitor Trust Using Extended Validation SSL

VeriSignNow with Extended Validation (EV) SSL available from VeriSign, you can show your customers that they can trust your site. Learn about EV SSL benefits in the free VeriSign white paper.

» Read the Paper

Featured Sponsors