|
Personnel Management Policy
Policy No: 1.18
Printable Version
PURPOSE
The purpose of the Personnel Management Policy is to ensure
that the correct procedures are followed when administering
the users of The Fake Chicken Company’s computer systems and networks. It is
also intended to minimise the threat of a security breach
involving unauthorised use as it has been proven that the
biggest security threat comes from within the organisation.
SCOPE
This policy affects all personnel can gain access to any
computer systems and network owned or managed by The Fake
Chicken Company.
POLICIES
1.1
Pre-Employment
1.1.1 Personnel
who are to be employed in positions of trust will be
required to pass a basic background check prior to starting
work...
... and more
Top
1.2 During Employment
1.2.1
Staff who use the computer
systems that are owned or managed by
the company must abide by all applicable Information
Systems policies and sign the Employee Acceptance Form at
the bottom of the Acceptable Use Policy.
Non-compliance will be considered misconduct.
Acceptable Use Policy
- non compliance
Acceptable Use Policy -
employee acceptance
Top
... and more
1.3 Termination Process
1.3.1 Upon
termination, employees may not retain, give away or remove from
The Fake Chicken Company
premises any company information or property other than that considered
personal...
Help with Understanding this Policy
Computer System and
Equipment Use Policy
Legal Compliance Policy
... and more
2.
MANAGEMENT RESPONSIBILITIES
2.1
Pre Employment
2.1.1
Managers responsible
for employing staff that will
be provided with enhanced privileges or
placed in positions of trust must ensure that a background
check has been carried out...
... and more
2.2
During Employment
2.2.1 Terms and
conditions of employment and job descriptions must include the employees
responsibility for security, action to be taken for
non-compliance with security requirements and the employee's
legal rights and responsibilities.
Top
... and more
2.3
Termination Process
2.3.1 Managers must ensure that all other information or property in the custody of the
departing staff member is handed back at the time of departure.
Explanation
This policy
makes Managers
responsible for ensuring that the departing staff member
hands back all company property entrusted to them during
employment...
Computer System and
Equipment Use Policy
Legal Compliance Policy
... and more
3. INFORMATION SYSTEMS STAFF RESPONSIBILITIES
3.1
Management of User Accounts
3.1.1 All changes to the access requirements of staff are
governed by the Access Control Policy.
Explanation
This is to protect
users and The Fake Chicken Company by giving
staff the access they need to do their current job, but no
more. It seeks to prevent an accidental system change or
unauthorised access to confidential information by a staff
member who has no requirement to have access.
Access Control Policy - review access
Access Control Policy
-
changes to access
... and more
3.2
During Employment
3.2.1
Expertise in important computer or network related
areas must be possessed by at least two available persons.
Having this backup expertise...
Explanation
The intention of this policy is to prevent
The Fake Chicken Company
from finding itself in an position where there is no one to
assist with technical matters. Should system/user
support may be outsourced, the service provider should
comply with this policy...
Business Continuity Policy
... and more
3.3
Post Employment
3.3.1
IT staff with special access privileges
will be required to maintain
confidentiality
even after their employment with The Fake Chicken Company
ceases.
... and more
Top
© 2004 All
Rights Reserved Kaon
Security Ltd |
BS 25999 Standard No
Match
SOX Section 404
No Match