Information security should start from the top, experts say. Numerous breaches in customer data security in 2005 have fueled calls for federal legislation that could lead to onerous security demands on financial institutions that hold consumer information. Even if legislators show restraint in demanding new controls, it’s time for banks to create C-level security positions, experts suggest. “