slide1 n.
Download
Skip this Video
Download Presentation
Employee Security Controls

Loading in 2 Seconds...

play fullscreen
1 / 29

Employee Security Controls - PowerPoint PPT Presentation


  • 122 Views
  • Uploaded on

Employee Security Controls. CS5493(7493). Contracts. Employment contract Accompanying job responsibility description Non-Disclosure Agreement Acceptable Usage Policy Service Level Agreements. Employee Controls. Things to consider when hiring: Credit check Background check Drug testing

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about 'Employee Security Controls' - bien


Download Now An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
slide2

Contracts

  • Employment contract
    • Accompanying job responsibility description
  • Non-Disclosure Agreement
  • Acceptable Usage Policy
  • Service Level Agreements
employee controls
Employee Controls
  • Things to consider when hiring:
    • Credit check
    • Background check
    • Drug testing
    • Lie detector test
employee controls1
Employee Controls
  • All of the aforementioned controls are intrusive.
  • The employee or candidate must be properly informed and must agree.
  • Give them an opportunity to make any disclosures.
employee controls2
Employee controls
  • Credit check – relatively inexpensive compared to the other listed alternatives.
employee controls3
Employee controls
  • Background check
    • Resume verification
    • Job history verification
    • Criminal history check
    • References
employee controls4
Employee Controls
  • When conducting a job history check, one can contact former employers
  • Former employers are allowed to disclose information that is not protected by law, is accurate, and truthful.
employe controls
Employe Controls
  • Drug testing
  • Lie detector test

Expensive to administer, not required for all employees.

slide9

Employee Controls

  • Separation of Duties
slide10

Employee Controls

  • Separation of Duties
  • Need-to-Know
slide11

Employee Controls

  • Separation of Duties
  • Need-to-Know
  • Job Rotation
slide12

Employee Controls

  • Separation of Duties
  • Need-to-Know
  • Job Rotation
  • Vacations
slide13

Employee Controls

  • Separation of Duties
  • Need-to-Know
  • Job Rotation
  • Vacations
  • Audits/Reviews
slide14

Separation of Duties

  • This prevents someone from overseeing their own work: reduces errors and fraud.
separation of duties
Separation of Duties
  • The people writing checks to vendors cannot be the same people who make the orders and establish vendor contracts.
slide16

Need-to-Know

  • Employees will be given access to the information required for them to perform their duties.
slide17

Need-to-Know

  • Reduces the possibility of improper disclosure of information.
slide18

Job Rotation

  • Separation of duties and need-to-know can be defeated by collusion. Job Rotation is a strategy to prevent collusion.
job rotation
Job Rotation
  • Makes it possible to track which users were authorized to do what and when.
  • Provides redundancy in job positions.
  • Enhances human capitol.
slide20

Vacations

  • Vacations are important for determining if your operation can function properly while someone is away.
  • A dishonest employee may be hiding something and fearful of ever leaving their post.
slide21

Audits/Reviews

  • Employees should be reviewed.
    • Usually annually.
slide22

Audits/Reviews

  • Employees should be reviewed.
  • If an employee is not following security controls, find out why.
slide23

Audits/Reviews

  • Employees should be reviewed.
  • If an employee is not following security controls, find out why.
    • Could be out of ignorance
slide24

Audits/Reviews

  • Employees should be reviewed.
  • If an employee is not following security controls, find out why.
    • Could be out of ignorance
    • Could be deliberate deception
slide25

Disclosure

  • Employees need to know why Employee-Controls are necessary.
slide26

Disclosure

  • Employees need to know why Employee-Controls are necessary.
    • For example, explain the necessity of need-to-know
slide27

Disclosure

  • Employees need to know why Employee-Controls are necessary.
    • Explain the necessity of need-to-know
    • Employees can be disgruntled if they don’t know why they are uninformed about some issues
exit interviews
Exit Interviews
  • Create a record of why an employee leaves.
exit interviews1
Exit Interviews
  • Make a checklist of actions
    • Collect physical access items: keys, keycards, etc.
    • Close accounts
    • Notify vendors, contractors, business partners, helpdesk, etc (create a list of contacts).