
	Home > Ask the Security Experts > Expert Archive: Security Management Questions & Answers > Employee termination procedures

Ask The Security Expert: Questions & Answers

EMAIL THIS

Employee termination procedures

EXPERT RESPONSE FROM: Shon Harris, past SearchSecurity.com expert

		Pose a Question

		Other Security Categories

		Meet all Security Experts
		Become an Expert for this site

Digg This!

StumbleUpon

Del.icio.us

QUESTION POSED ON: 26 April 2006
We are updating our organization's security policies and found that we don't have a clear way of declaring an employee a security risk or procedures for taking away system access privileges. Do we specify that after a certain number of violations one is a security risk? Do we use personnel policy or some combination of the two? It is not easy to terminate an employee in my organization, so how should we handle an employee who has been declared a security risk, but has not yet been terminated?

To address such issues, the security group, HR and management should work together to define and enforce these policies. Let's review some employee termination procedures.

Before you begin, make sure you have management's support. Management is responsible for selecting the appropriate people to work together on this task. Management and HR should oversee the enforcement of proper employee behavior and the security group should help develop the necessary policies, standards, guidelines and procedures. The security group should also assist with the development of training procedures and conduct training seminars, so if an incident occurs, the organization will be able to handle the situation.

This Step-by-Step Guide provides specific strategies for building a structure for dealing with employees even before they are hired.

Ask the Expert Step-by-Step Guide: Employee termination procedures

Introduction
Part I: Before employment begins
Part II: Hiring and orientation
Part III: Employment
Part IIII: After employee termination

BROWSE BY TAG

Expert Archive: Security Management, Information Security Policies, Procedures and Guidelines, Information Security Management, Security Awareness Training and Internal Threats, VIEW ALL TAGS

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Expert Archive: Security Management
	What is the GISP certification and how does it compare to the CISSP certification?
	Using a QSA to write up a PCI DSS report on compliance (ROC)
	How can gap analysis be applied to the security SDLC?
	Comparing cheap security products and appliances to costly appliances
	What are some tips on protecting my security budget in a poor economy?
	What value do research firms provide to their subscribing enterprises?
	What certificate offers the best ROI for an IT project manager?
	Is insider activity or outsider activity a bigger enterprise threat?
	How does information security prevent fraud in the enterprise?
	Differences between an SAS 70 data center and a Tier III data center

Information Security Policies, Procedures and Guidelines

Essential guide: Pandemic planning for H1N1

Whitelists, SaaS modify traditional security, tackle flaws

Melissa Hathaway urges more cooperation, government attention to cybersecurity

Reuters: Obama ready to select cyber security czar

How a corporate Twitter policy can combat social network threats

Should enterprises be concerned with Twitter in the workplace?

Information security management hype: Debunking best practices

Data breach avoidance begins with security basics, panel says

Expert: Information security spending often restricts innovation

GAO report cites government weaknesses, data leakage

Security Awareness Training and Internal Threats

Creating a HIPAA employee training program

Successful rogue antivirus hinges on social engineering

External attacks start with unintentional mistakes, survey finds

Security technologies fail to address insider threat management

Data breach avoidance begins with security basics, panel says

Monitoring program data and internal controls for risk management

Software security threats and employee awareness training

Twitter risks, Facebook threats trouble security pros

Social engineering training could disrupt botnet growth

How to write a risk methodology that blends business, security needs

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

defense in depth (SearchSecurity.com)

non-disclosure agreement (SearchSecurity.com)

security policy (SearchSecurity.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

Find Security Solutions for Your Business

View this month\\'s issue and subscribe today.

Apply online for free conference admission.

SEARCH :

Site Index

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2003 - 2009, TechTarget \| Read our Privacy Policy