I once knew of a person who needed to quickly come up with a report supporting a course of action some C-suite person wanted to do.
The report required access to some institutional financial data, which of course is "open" because this is a large non profit.
This clever person taught themselves enough code to ping the server for the data (read-only, of course). Note, this data is available to the business teams. The report was well done.
All hell broke loose organizationally, since they wanted strict access controls for security etc. The business team felt (perhaps justifiably) side-stepped (and perhaps unjustifiably threatened). Communications lines had been crossed! Access controls overcome! It was anarchy!
As a side note. Shame and ignorance-based access controls are a critical part of most orgs' fire-walling, I bet.
The report required access to some institutional financial data, which of course is "open" because this is a large non profit.
This clever person taught themselves enough code to ping the server for the data (read-only, of course). Note, this data is available to the business teams. The report was well done.
All hell broke loose organizationally, since they wanted strict access controls for security etc. The business team felt (perhaps justifiably) side-stepped (and perhaps unjustifiably threatened). Communications lines had been crossed! Access controls overcome! It was anarchy!
As a side note. Shame and ignorance-based access controls are a critical part of most orgs' fire-walling, I bet.