People First security breach allegedDMS urges state to fortify system
By Bill Cotterell
DEMOCRAT POLITICAL EDITOR
People First employees can download sensitive personnel information to disks, print copies and e-mail data on state employees without leaving a trail in Convergys computers, according to an internal investigation.
The report by Department of Management Services Inspector General Steve Rumph calls for security improvements in Gov. Jeb Bush's biggest outsourcing project: a nine-year, $350 million contract for privatizing and automating state human-resource services.
In an affidavit taken for a lawsuit by five state workers who say they were put at risk of identity theft, a former Convergys employee alleges that some People First workers playfully poked through personnel files of Bush, Attorney General Charlie Crist, Chief Financial Officer Tom Gallagher and DMS Secretary Tom Lewis, whose agency has been laboring with Convergys for two years to work out chronic kinks in People First. Another ex-employee signed an affidavit saying she was told by Convergys bosses not to let state employees know their information was at risk.
snip
Andrews also got an affidavit from former Convergys payroll-team leader Valeta Roberson, who said legally confidential data on police officers could be viewed by People First employees, along with bank-routing numbers for state employees' paychecks.
"I was repeatedly told that myself and Convergys employees should lie to state employees concerning the programming defects in the system," she wrote. "I was repeatedly told by senior Convergys employees that the security defects ... should not be discussed."
snip
"An electronic colonoscopy is what I call it," said Mark Neimeiser, a 20-year lobbyist for state employees. "If the state had shown respect for the workers, this wouldn't have happened - but that's not what outsourcing is about."http://www.tallahassee.com/apps/pbcs.dll/article?AID=/20051225/NEWS01/512250325/1010(Thanks, Jeb.)