The Design And Implementation Of The Integrated Rights Management System Based On BPO

Since China joined the WTO, the rapid rise of the financial services outsourcingindustry."Business Process Outsourcing"(BPO) sides of authority control, auditing,supervision, risk control, more and more attention, and the legal and contractualagreements binding for outsourcers as more cooperation projects, cooperation ageincreases. Contracting companies and third party service providers (outsourcers) achange in the relationship between the two stage is no longer a simple principal-agentrelationship or contractual relationship, but rather a strategic partnership. Agency willbegin outsourcing core business growth, although the risks associated with outsourcingand management can be transferred out, bring some revenue for the financial institution.But also inevitably bring to their certain risks. If brought strategic risk, reputational risk,regulatory risk, operational risk, and increased outsourcing of regulatory difficulty. Tothis end, both sides need to outsource an effective regulatory and rights managementsystems, access control outsourcers how to perform within the operating system,application and database environment, and how it can ensure that these controls workwell, and in the event of personnel changes get timely updates when these issues are tobe deeply concerned about contracting agency; while outsourcing providers also need toregulate internal business processes, in a remote audit authority, business processing,expense, data transfer, job responsibilities, etc. to communicate with each other and thefirst time authorized financial institutions in meeting the compliance requirements of thepremise, to reduce time costs, improve efficiency and avoid risks. Research design andimplementation of the integrated system of privileges designed to meet the businessprocess outsourcing internal control, compliance and operational risk and the risk ofcontracting inter-regional control and licensing companies, the establishment of a safetystandard, easy to operate and can be traced integrated control platform.The information system uses B/S mode, in the development of the latest popularcombination SpringMVC+Hibernate implementation of the MVC architectural pattern,combined with Memcache high-performance distributed memory object caching systemtechnology, the system can run in a multi-platform environment, compatible with ahigher degree. Borrowing base RBAC system theory of RBAC do optimization, addtasks, groups, global roles to accommodate multi-platform role management and access certification requirements. JBPM4technology can be customized based on processdesign and management, which greatly simplifies the operation, combined with processmonitoring and early warning technology to reduce human interference caused byhigh-risk and improve response time; introduction of external sidelines andauthorization mechanisms, the regulation of financial institutions added to the system,the original closed outsourcing operations management feedback to related parties,strengthening the ability of the parties to communicate the first time, to avoid thepossible risk of non-compliance. Use Agent agent rights management originallydistributed OA, ERP, access control smart card applications under the unified treatment;based access control and electronic signature technology of the network, so thatreal-name system certification possible; butt and work order systems and dataprocessing platform so that all aspects of the operation carried out under the authority ofan orderly premise-based encryption to protect the security of the data. Because of howthe planning system used by the terminal, so use webService way remote call andinformation and communication, reduce overhead application interface, as well asbusiness systems integration with financial institutions to provide a commonmechanism.Standards established by the system set in line with the financial industryinformation security requirements, resolve internal outsourcer rights managementcontrol, increased safety supervision outsourcers outreach and participation of; systemin the actual trial greatly reduces the risk of artificially changing the traditionalinteractively control and reduce the risks. Operating systems, applications and databases,servers and other aspects of access control, enhanced privacy management capability.Inter-regional and environmental platform integrated authority control, will be thedevelopment direction of the system.