Cards: Track changes made to card detials (TFN, Superannuation fund)
Certian information in the Card File is very sensitive and should be logged in the Audit Trail when changes are made. (Especially for the Employee Card File)
These details include employee information such as TFN, Bank Account, Superannuation Fund, Date of Birth etc. When one of these fields is updated it should be noted in the Session Report of which user has done it.
Key data should also be included from the other card files.
For example if a rogue employee updates bank account details then automatic payments could be made to the wrong account. Being able to go back and look at the security report of who last updated that card file as part of the audit trail would assist in investigations.
"Secure Information Changes in Card File - Audit Report"