Detecting complex account fraud in the enterprise: The role of technical and non-technical controls

Sigi Goode; David Lacey

doi:10.1016/j.dss.2010.08.018

Detecting complex account fraud in the enterprise: The role of technical and non-technical controls

Sigi Goode^*, David Lacey

^*Corresponding author for this work

Research output: Contribution to journal › Article › peer-review

25 Citations (Scopus)

Abstract

Complex fraud, involving heightened offender knowledge of organizational processes, can be especially damaging to the firm. Much research has focused on technical, quantitative detection methods. This paper uses multidimensional scaling of empirical fraud event data from a large telecommunications firm to illustrate how technical and socio-technical fraud controls are used to detect fraud at varying levels of time exposure and dollar loss. The evidence suggests that technical controls only detect one third of fraud cases with zero time exposure and loss. More complex fraud is detected with a range of technical and socio-technical controls from inside and outside the firm. Interviews with twelve fraud managers and investigators are used to confirm the findings.

Original language	English
Pages (from-to)	702-714
Number of pages	13
Journal	Decision Support Systems
Volume	50
Issue number	4
DOIs	https://doi.org/10.1016/j.dss.2010.08.018
Publication status	Published - Mar 2011

Access to Document

10.1016/j.dss.2010.08.018

Cite this

@article{acf5779577ae4a429ab46b44ae50a7f0,

title = "Detecting complex account fraud in the enterprise: The role of technical and non-technical controls",

abstract = "Complex fraud, involving heightened offender knowledge of organizational processes, can be especially damaging to the firm. Much research has focused on technical, quantitative detection methods. This paper uses multidimensional scaling of empirical fraud event data from a large telecommunications firm to illustrate how technical and socio-technical fraud controls are used to detect fraud at varying levels of time exposure and dollar loss. The evidence suggests that technical controls only detect one third of fraud cases with zero time exposure and loss. More complex fraud is detected with a range of technical and socio-technical controls from inside and outside the firm. Interviews with twelve fraud managers and investigators are used to confirm the findings.",

keywords = "Controls, Fraud, Loss, Security, Time exposure",

author = "Sigi Goode and David Lacey",

year = "2011",

month = mar,

doi = "10.1016/j.dss.2010.08.018",

language = "English",

volume = "50",

pages = "702--714",

journal = "Decision Support Systems",

issn = "0167-9236",

publisher = "Elsevier B.V.",

number = "4",

}

TY - JOUR

T1 - Detecting complex account fraud in the enterprise

T2 - The role of technical and non-technical controls

AU - Goode, Sigi

AU - Lacey, David

PY - 2011/3

Y1 - 2011/3

N2 - Complex fraud, involving heightened offender knowledge of organizational processes, can be especially damaging to the firm. Much research has focused on technical, quantitative detection methods. This paper uses multidimensional scaling of empirical fraud event data from a large telecommunications firm to illustrate how technical and socio-technical fraud controls are used to detect fraud at varying levels of time exposure and dollar loss. The evidence suggests that technical controls only detect one third of fraud cases with zero time exposure and loss. More complex fraud is detected with a range of technical and socio-technical controls from inside and outside the firm. Interviews with twelve fraud managers and investigators are used to confirm the findings.

AB - Complex fraud, involving heightened offender knowledge of organizational processes, can be especially damaging to the firm. Much research has focused on technical, quantitative detection methods. This paper uses multidimensional scaling of empirical fraud event data from a large telecommunications firm to illustrate how technical and socio-technical fraud controls are used to detect fraud at varying levels of time exposure and dollar loss. The evidence suggests that technical controls only detect one third of fraud cases with zero time exposure and loss. More complex fraud is detected with a range of technical and socio-technical controls from inside and outside the firm. Interviews with twelve fraud managers and investigators are used to confirm the findings.

KW - Controls

KW - Fraud

KW - Loss

KW - Security

KW - Time exposure

UR - http://www.scopus.com/inward/record.url?scp=79151485010&partnerID=8YFLogxK

U2 - 10.1016/j.dss.2010.08.018

DO - 10.1016/j.dss.2010.08.018

M3 - Article

SN - 0167-9236

VL - 50

SP - 702

EP - 714

JO - Decision Support Systems

JF - Decision Support Systems

IS - 4

ER -

Detecting complex account fraud in the enterprise: The role of technical and non-technical controls

Abstract

Access to Document

Other files and links

Cite this