Programming for bank

Re: Programming for bank

PRESENT321@gmai l.com wrote:[color=blue]
>
> I've had a few years experience in web site design and server-side
> programming and am fairly confident in my skills.[/color]

What about transaction processing? Have you done anything in this
area before?
[color=blue]
> There is a local Credit Union wanting to add a few features to their
> site (bill pay, transfer money between banks) and I am interested in
> the job.
>
> However, I've never worked for a bank before. Any suggestions about
> how to win the job,[/color]

It's possible there are developers out there who already have
a solution, which only needs to be adapted to your CU's needs.
If any such developer bids for the job against you, you will
probably lose, because they will not charge the CU for development,
only for adaptation, which will take a lot less time...

Assuming no one with a readily customizable solution bids against
you, you will need to show that:

1. You have experience working with whatever database engine the CU
uses.
2. You can program transactions processing using that database engine.
3. You can work with the CU's IT team.
4. You understand SSL very well.
5. You have basic domain expertise in banking (i.e., you know what
a routing number is, etc.)
[color=blue]
> and how to ensure my work is secure enough for this
> application[/color]

This depends at least as much on the CU's network management
team as it does on you.
[color=blue]
> Also, will I have a liability issue if something goes horribly wrong?[/color]

You should insist that the CU expressly idemnify you for any damage
caused by the software you write; this is a standard software
industry practice. See any software license for the appropriate
language.

Cheers,
NC

Re: Programming for bank

PRESENT321@gmai l.com wrote:[color=blue]
> I just wanted to get some advice.[/color]
....[color=blue]
> There is a local Credit Union wanting to add a few features to their
> site (bill pay, transfer money between banks) and I am interested in
> the job.
>
> However, I've never worked for a bank before. Any suggestions about
> how to win the job, and how to ensure my work is secure enough for this
> application would be greatly appreciated. Also, will I have a
> liability issue if something goes horribly wrong?[/color]
....

As with most big companies, and especially ones where large sums of
money move, the most important skill is keeping your mouth shut. And
that really means shut.

/m

Re: Programming for bank

NC wrote:
[color=blue]
> PRESENT321@gmai l.com wrote:[color=green]
>>
>> I've had a few years experience in web site design and server-side
>> programming and am fairly confident in my skills.[/color][/color]
<snip>[color=blue]
>[color=green]
>> Also, will I have a liability issue if something goes horribly wrong?[/color]
>
> You should insist that the CU expressly idemnify you for any damage
> caused by the software you write; this is a standard software
> industry practice. See any software license for the appropriate
> language.
>[/color]

Be prepared to walk away if they won't agree.

C.

|OT| Re: Programming for bank

Marcin Dobrucki wrote:
<snip>[color=blue]
> As with most big companies, and especially ones where large sums of
> money move, the most important skill is keeping your mouth shut. And
> that really means shut.[/color]

LOL. Probably the best joke read recently in c.l.php. BTW, you seem
to be with Nokia?;-)

--
<?php echo 'Just another PHP saint'; ?>
Email: rrjanbiah-at-Y!com Blog: http://rajeshanbiah.blogspot.com/

Re: Programming for bank

Marcin Dobrucki wrote:[color=blue]
> As with most big companies, and especially ones where large sums of
> money move, the most important skill is keeping your mouth shut. And
> that really means shut.
>
> /m[/color]

Ha ha. Especially in Poland, I would say.

Re: Programming for bank

NC,

Thanks for your thoughtful response!

Quoting you:
What about transaction processing? Have you done anything in this area
before?

I wrote a completely custom shopping cart / ordering system that
imports directly to the QuickBooks accounting package. Man, that took
a while :-)

I guess I'll have to ask which database engine they are using.

Quoting you:
You understand SSL very well.

Hmm. I know that it encrypts data as it travels over the Internet, and
should be used for all sensitive form submissions and all pages
containing sensitive information.
Do you have something more grandiose in mind?

Quoting you:
You have basic domain expertise in banking (i.e., you know what a
routing number is, etc.)

Hmm. I do know what a routing number is, but only because I set myself
up with PayPal. Not really that incredible.
I suspect this might be my weakness.

Do you have any suggestions for learning more on the subject?

Quoting you:
You should insist that the CU expressly indemnify you for any damage
caused by the software you write

Great thought! I will definitely do so.

This CU has ongoing programming needs. I don't have to get this
particular job. Are there any certifications you would recommend to
help me be a more attractive option in the future?

Matthew

Re: Programming for bank

PRESENT321@gmai l.com wrote:[color=blue]
> NC,
>
> Thanks for your thoughtful response!
>
> Quoting you:
> What about transaction processing? Have you done anything in this area
> before?
>
> I wrote a completely custom shopping cart / ordering system that
> imports directly to the QuickBooks accounting package. Man, that took
> a while :-)
>
> I guess I'll have to ask which database engine they are using.
>
> Quoting you:
> You understand SSL very well.
>
> Hmm. I know that it encrypts data as it travels over the Internet, and
> should be used for all sensitive form submissions and all pages
> containing sensitive information.
> Do you have something more grandiose in mind?
>
> Quoting you:
> You have basic domain expertise in banking (i.e., you know what a
> routing number is, etc.)
>
> Hmm. I do know what a routing number is, but only because I set myself
> up with PayPal. Not really that incredible.
> I suspect this might be my weakness.
>
> Do you have any suggestions for learning more on the subject?
>
> Quoting you:
> You should insist that the CU expressly indemnify you for any damage
> caused by the software you write
>
> Great thought! I will definitely do so.
>
> This CU has ongoing programming needs. I don't have to get this
> particular job. Are there any certifications you would recommend to
> help me be a more attractive option in the future?
>
> Matthew
>[/color]
Matthew,

A shopping cart is not the same as transactional processing. The latter
has to do with more robust databases like DB2, Oracle and SQL Server.

For instance - if you do a SELECT on a row, that row will be locked (no
one else can access it) until a COMMIT or ROLLBACK is done, or the
program ends (connection is broken). If they are using a pool of
connections, this is NOT necessarily the end of the PHP script.

Additionally, updates often need to be done on two or more tables. For
instance, a transfer of funds from a savings account to a checking
account requires the savings account be decremented and the checking
account incremented by the amount being transferred. These need to be
done in a atomic process - a transaction. This is because if the
savings account is decremented and the server crashes before the
checking account can be incremented, you will have one very unhappy
customer and books which don't balance. This and a lot more things go
into transactional programming.

From the business end - if you're in the U.S., you will need Errors and
Commissions insurance, for sure. You can put all you want in the
contract about limits on your liability - but if they can prove
misrepresentati on, negligence or similar activities, your limit on
liability will probably be thrown out by the courts. Even if it isn't
thrown out, it could cost you tens of thousands of dollars to defend
yourself. Most E&O policies will pay for your defense and penalties up
to the limits of the policy. And you need to keep it paid up - in case
the bank finds a problem with your code three years from now.

Additionally, the bank may want you to be bonded. This covers possible
dishonest acts on your part. That isn't too bad, but it is another
expense you need to factor in. Background checks are not uncommon,
either - they don't want to hire someone with a history of robbing
banks! :-)

Basically - you're in a whole different league when dealing with banks.
There, a small mistake on your part can cost them millions of dollars.
And they want to protect themselves.

If you're still comfortable with this, then go for it. Banks can be a
PITA to work for, but they can also be a profitable income.


--
=============== ===
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.
jstucklex@attgl obal.net
=============== ===

Re: Programming for bank

Actually, you can make a try by understand what you going to, and try
your best to search for what relate to your subject. It is very
important that learning is ann on going activity, as a programmer you
need to update your field as what your customer wants. Learn more about
SSL isn't a hard work for you, you need only time to go, and most
importantly, try to gain more advice from some expert.

Phal

Re: Programming for bank

Jerry Stuckle wrote:[color=blue]
>
> PRESENT321@gmai l.com wrote:
>[color=green]
> > I wrote a completely custom shopping cart / ordering system that
> > imports directly to the QuickBooks accounting package.[/color]
>
> A shopping cart is not the same as transactional processing.
> The latter has to do with more robust databases like DB2,
> Oracle and SQL Server.[/color]

And the QuickBooks file based database is nothing like an SQL
database ;)

Jussi Jumppanen
Author of: Zeus for Windows Editor (New version 3.95 out now)
"The PHP syntax highlighting, code folding editor"
Home Page: http://www.zeusedit.com

Re: Programming for bank

On 15 Sep 2005 22:18:20 -0700, betterdie@gmail .com wrote:
[color=blue]
> Actually, you can make a try by understand what you going to, and try
> your best to search for what relate to your subject. It is very
> important that learning is ann on going activity, as a programmer you
> need to update your field as what your customer wants. Learn more about
> SSL isn't a hard work for you, you need only time to go, and most
> importantly, try to gain more advice from some expert.
>
> Phal[/color]

What and who are you replying to, Learn some netiquette, quote the relevant
parts of what you are replying to.

Re: |OT| Re: Programming for bank

R. Rajesh Jeba Anbiah wrote:
[color=blue]
> LOL. Probably the best joke read recently in c.l.php.[/color]

:-)
[color=blue]
> BTW, you seem to be with Nokia?;-)[/color]

yea, well, my job has little to do with large sums of money ;-)

/m

Re: Programming for bank

Quoting Phal:
It is very important that learning is ann on going activity

Yes, my plan is to learn as I go. In this field, that's the upward
mobility :-)

Quoting Phal:
Learn more about SSL isn't a hard work for you, you need only time to
go, and most importantly, try to gain more advice from some expert.

Getting advice from experts is why I'm here. I thank all of you for
the time you are taking to help me with this question!
Is there anything I need to learn about SSL beyond using it for
handling sensative communication between client and server?

Matthew

Re: Programming for bank

Ooooh, that kind of transactional processing! Doh!

Yes, I have done this. Our web site uses MSSQL Server 2000, and we're
awaiting the arrival of v2005. I have set up our site with a degree of
transactional processing.

By the way, thanks for your incredibly through and thoughtful response!

I'll ask my insurance agent about that Errors and Commissions
insurance. Those are some sobering issues you brought up.

Of course, ideally the code will work perfectly. Is there a firm that
offers some kind of auding service to be sure the code is secure before
the project is finilized?

Also, do you have a feel for what kind of hourly rate I should be
asking for?

Lastly, this bank is a local credit union. Is it worth the trouble?
Not that you have any way of knowing :-)

Matthew

Re: Programming for bank

Quoting Jussi:
And the QuickBooks file based database is nothing like an SQL
database ;)

Quite so. But it's so much harder to work with that it's the one I
mention :-)

I actually have been working with SQL Server for over a year now.

Matthew