This is an example of backend controls not properly addressing a front end problem.  The FDIC had tools in place to alert on copied data, but no controls in place to prevent the copying.  Data Loss Prevention can be challenging, even with several good solutions available, but that is no excuse when this level of sensitive information is in play, at least not for the general user population of most organizations.

http://www.scmagazine.com/fdic-breach-of-44000-customers-caused-by-storage-device/article/488999/