Sign in Subscribe
Cyber Security Tips Featured

The Horizon IT Scandal: A BISO's Perspective

Barry Kavanagh

3 min read
The Horizon IT Scandal: A BISO's Perspective

Introduction:

In the late 1990s, the United Kingdom's Post Office implemented the Horizon IT system, a revolutionary technology designed to streamline operations and enhance efficiency across its vast network of sub-post offices. However, what began as an ambitious attempt to modernize postal services eventually turned into one of the most significant scandals in the history of the UK Post Office. Between 1999 and 2015, the organization relentlessly pursued operators of sub-post offices for alleged theft, fraud, and false accounting, all based on information provided by the flawed Horizon IT system.

The Horizon IT system, touted as a state-of-the-art solution, was responsible for managing financial transactions within the Post Office's extensive network. However, a closer examination revealed serious flaws in the system, leading to inaccurate accounting and severe financial discrepancies. The consequences were devastating for sub-post office operators, who found themselves accused of crimes they did not commit. The Fujitsu accounting software used in the system reported missing funds from their respective branches when in reality their cash was in fact balanced.

A new TV mini series titled Mr. Bates VS the Post Office has been released and as I watched it I couldn't help but stress to those around me that this could have been prevented with a security assessment and that it's one of many reasons that I do what I do, to prevent these situations by ensuring audit trails and non-repudiation are in place for systems that handle financial transactions. I explained to those around me watching that this wasn't just a scandal series to me, I was watching it from a security perspective as a system that was in production that hadn't been adequately assessed and yet it was a crucial part of infrastructure in the UK.

From a security perspective, the Horizon IT scandal underscores the critical importance of robust security measures, especially when dealing with systems that handle sensitive financial data. A breakdown in security not only jeopardizes the integrity of the data but can also have far-reaching consequences, as seen in the case of the UK Post Office. An assessment would most likely have identified these flaws as risks that could be mitigated before release or in the early days of release at the latest. More importantly the risks would have had someone accountable assigned to them to ensure they were managed through to mitigation.

A BISO's Role in Prevention:

As a Business Information Security Officer (BISO), my role is pivotal in preventing such scenarios for various systems containing sensitive data. By incorporating security controls into project assessments and ensuring the implementation of stringent security requirements, a BISO can play a crucial role in mitigating risks associated with technology implementations.

Here's an example of just a few of the requirements I would have recommended for the Horizon IT system that could have prevented these issues (based on my understanding of the events from publicly available information):

  1. Audit Trails and Accountability:

Requirement: Implement comprehensive audit trails for user actions within the system.

Rationale: A transparent record of user activities allows for swift detection or later discovery of any suspicious or unauthorized actions. In the case of the Horizon IT scandal, an audit trail could have exposed discrepancies early on, preventing the false accusations against sub-post office operators.

  1. Separation of Environments:

Requirement: Maintain a distinct development environment for developers, with restricted access to production data.

Rationale: The Horizon IT scandal revealed the dangers of allowing developers/support staff access to live production environments without adequate controls. A separate development environment ensures that unintentional or malicious changes are confined to a controlled space, protecting the integrity of the live system. I think I actually shouted at the TV "They don't have a development environment! They're making changes to production!"

  1. Access Control and Monitoring:

Requirement: Implement robust access controls and continuous monitoring of user activities.

Rationale: Unauthorized access to critical systems can have severe consequences. By enforcing strict access controls and implementing real-time monitoring, a systems administrator can ensure that only authorized personnel have access to sensitive data and that any suspicious activity is promptly identified and addressed.

Conclusion:

Although this incident started back in 2003 and we've come a long way since then, there are still many organizations rushing products to market without first assessing them. A lot of The Horizon IT scandal serves as a stark reminder of the importance of cybersecurity in the implementation of large-scale technological projects. BISOs (and similar roles) play a pivotal role in safeguarding organizations against the potential pitfalls that can arise from inadequate security measures. IT's not always about data loss or even financial loss, sometimes it is about ensuring the integrity of such important data and protecting the reputation of everyone that handles that data.

By prioritizing audit trails, environment separation, access controls, and continuous monitoring, a BISO can significantly contribute to the prevention of fraud, false accusations, and financial discrepancies, ultimately preserving the trust and integrity of the systems they oversee.

Share on LinkedIn

If you enjoyed this post, please consider supporting my work through the button below or becoming a free subscriber, (it really helps).

If you're a business and would like to discuss consulting services, you can request a free consultation here: https://www.megabytesandme.com/services/

Thank you!