- Case Study All Questions In This Assignment Relate To The Following Case Study The Financial Sector Conduct Authority 1 (90.35 KiB) Viewed 30 times
- Case Study All Questions In This Assignment Relate To The Following Case Study The Financial Sector Conduct Authority 2 (93.55 KiB) Viewed 30 times
- Case Study All Questions In This Assignment Relate To The Following Case Study The Financial Sector Conduct Authority 3 (55.15 KiB) Viewed 30 times
- Case Study All Questions In This Assignment Relate To The Following Case Study The Financial Sector Conduct Authority 4 (15.61 KiB) Viewed 30 times
Case Study All questions in this assignment relate to the following case study: The Financial Sector Conduct Authority (FSCA) of South Africa has decided to form an internal council that will combat online ponzi schemes, cybercrime, online fraud and scams. The council will deliver monthly reports to FSCA's board of directors, The Governor of the South African Reserve Bank (SARB) and The Minister of Finance. This follows after thousands of people have been falling victim and losing money to these schemes and cyber attacks. The preliminary investigations done in collaboration with the major banks have revealed that some incidents are due to identity theft and unlawful use of personal information. Because of this finding the council is expected to enforce the implementation of the Protection of Personal Information (POPI) Act in the Financial Services Inductry. The Parliament of South Africa assented to POPI Act on 19 November 2013 and The President of South Africa has proclaimed the POPI Act commencement date to be 1 July 2020. The Protection of Personal Information Act 4 of 2013 aims: • to promote the protection of personal information processed by public and private bodies; • to introduce certain conditions so as to establish minimum requirements for the processing of personal information: • to provide for the establishment of an Information Regulator to exercise certain powers and to perform certain duties and functions in terms of the Act and the Promotion of Access to Information Act, 2000; • to provide for the issuing of codes of conduct; • to provide for the rights of persons regarding unsolicited electronic communications and automated decision making • to regulate the flow of personal information across the borders of the Republic; and • to provide for matters connected therewith. The FSCA has drafted a 5 year strategic plan that the council has to abide by. There is a set of information systems that the FSCA needs to support its strategic plan. In addition to that, the FSCA needs to employ a set of computing hardware, network hardware and system software to automate their operations. The new council will consist of five investigative commissioners with diverse skills in Information Technology, Finance, Risk Management, Online Trading and Financial Markets. The council will work with the South African Reserve Bank (SARB) and the five major banks in South Africa. The council has approached you to help them create an end-to-end information system with intuitive user interfaces that will help them in their mission. There is a steering committee made up of the Governor of SARB, FSCA's board of directors and Leaders of the Major Banks that will oversee the implementation of the System. The system should offer consistent user experience and will mainly
enforce financial services legislature including the rollout of POPI Act. Some of the core requirements of the end-to-end system are as follows: There should be a financial service provider module/sub system for monitoring of all financial service providers operating in South Africa. The sub system should have 90% up time and recovery time of an hour. All financial service providers must be registered as well as their respective representatives. Directors of Financial Services Companies are expected to make sure that this happens in other to receive compliance reports from the council. The system must have access and monitor financial records of all companies formed and operating as financial service providers. • The system must be able to detect the movement of sizable monies from individual's accounts. The system must have monitoring tools to make sure that products and services being sold by financial services providers do meet the needs of the consumers/public. • The system must have auditing processes to ensure that consumers/the public are given clear and factual information as approved by the FSCA. Where advice is given, it must be suitable and be appropriate for the client's circumstances. As part of the end-to-end information system, the consumer/public must be offered a public online portal and mobile app so that they are able to log/register complaints and have those complaints be dealt with accordingly by the commissioners. The system should allow consumers/the public to track their current complaints including a functionality to search all the historical complaints and their resolution. Consumers/the public should also be able to access awareness content in form of research articles and videos The commissioners will have their own back-office admin module/sub system to perform their day-to-day duties. The sub system should be quick and responsive. Commisioners can Log/Register complaints on behalf of the public. Especially for matters that are reported via telephone and not logged on the public online portal. The system must have a content publication module/sub system that allows commissioners to record and publish their findings. All recorded findings should be peer reviewed and approved by other commissioners before the publication process can take place. The Consumers/the public should be able to access the findings on the online portal and mobile app once they are published. The online portal should be able to handle a load of 500 users concurrently at any point in time. The online portal and mobile app should have a functionality that allows Consumers/the public to download articles about online ponzi schemes, cybercrime, online fraud and scams.
The system must be able to handle the suspension and revocation of financial services licences. Commissioners will be the main end-users of the system in their quest to combat online ponzi schemes, cybercrime, online fraud and scams. They use the system mainly to pull daily and monthly reports, search for complaints from the public and check POPI Act compliance of a specific financial service provider. The work of the commissioners is complemented by numerous researchers and admin assistants. There is a requirement for the system to have Active Directory (AD) Role based access and Single Sign On that allows user to Login once and access numerous systems. After its go live, the system will be supported by technical support consultants from an external vendor. The process that the public uses to log/register complaints begins with the loading of the complaint on the Online Portal or Mobile App. All loaded complaints will be in the complaintLoaded state. Complaints can either be accepted (through the acceptance option) or rejected (through the reject option). All accepted complaints will be in the ComplaintsAccepted state and rejected complaints will be in the complaints Rejected State. For both Accepted and Rejected Complaint, there is a send notification option that sends notifications out. The process ends with Notification Sent state for all the notifications that are sent out. The Online Portal or Mobile App has a mechanism to check the details of the complaint before accepting or rejecting.
Q.1.2 (13) Identify four use cases that has commissioner as an actor and use your own words to construct a brief use case description for each use case you have identified. Q.1.3 (13) Choose one of the Use Cases you have identified in Q.1.2 above and create a fully developed use case description. You do not have to include Flow of Activities and Exception Conditions. Please put your answer in a tabular form.