Managing Human Resources: Termination Procedures

The Little Black of Computer Security By Joel Dubin 150 pages; $19.95 29th Street Press

You do the best to hire the best, but even then, employees sometimes need to be terminated. Regardless of whether the reason is performance-based or due to business losses, you should employ the following safeguards to protect your IT environment:

1. Review all your termination procedures with the legal and human-resources departments, and obtain
    their approval.

2. Take the following steps prior to terminating an employee:
     2.1. Inventory all systems, networks, applications, and data that the employee has access to.
     2.2. Check whether any unauthorized or rogue hardware or software exists on the employee's systems.
     2.3. List all the employee's user and administrative accounts.
             2.3.1. Particularly note any administrative accounts that include special privileges.
     2.4. Check whether any orphaned accounts exist, and if so, trace their ownership. If they are no longer being
             used, shut them down.
     2.5. Coordinate the termination date and time with the IT-security, building-security, and human-resources
             departments. If possible, plan for a time when the system will not be busy, so the IT staff can disable
             the employee's accounts without distractions.

3. Quickly take the following steps at the moment of termination (before the employee is out the door,
    if possible):
    3.1. Remove all physical access devices (badges, ID cards, access tokens, keys, and card keys) from the
           employee's possession.

More information Download Chapter 6 Recommend your favorite security titles Learn more about baking security into business processes Visit the Information Security Bookshelf for more excerpts

    3.2. Remove any network-access software, such as VPN clients and
            RAS software, from the employee's possession.
    3.3. Lock out access to the employee's workstation.
    3.4. Cancel and remove all system and network accounts.
    3.5. Escort the employee from the premises.

4. After termination, be sure that the IT staff checks the logs of the
    previously inventoried systems for any entry attempts by the
    terminated employee.
    4.1. Add rules to any Intrusion Detection Systems for checking the
           same.

5. If the person was employed either by the IT department or as a
    software developer with access to restricted systems, create
    backups of network configurations and crucial applications or data. In case of sabotage, you will then be
    able to quickly rebuild the damaged network or system.

Download Chapter 6, Managing Human Resources, to learn more about secure managment practices.

BROWSE BY TAG Security Awareness Training and Internal Threats,   Information Security Management,   NAC and Endpoint Security Management,   Network Access Control Basics,   Enterprise Network Security,   Information Security Policies, Procedures and Guidelines,   VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Security Awareness Training and Internal Threats Creating a HIPAA employee training program Successful rogue antivirus hinges on social engineering External attacks start with unintentional mistakes, survey finds Security technologies fail to address insider threat management Data breach avoidance begins with security basics, panel says Monitoring program data and internal controls for risk management Software security threats and employee awareness training Twitter risks, Facebook threats trouble security pros Social engineering training could disrupt botnet growth How to write a risk methodology that blends business, security needs Network Access Control Basics Security vendors can learn from ConSentry Networks demise Best Network Access Control Products Perimeter defense in the era of the perimeterless network Network access control technology: Over-hyped or underused? Symantec offers endpoint protection management, monitoring services Configuring access control lists What is the difference between a VPN and remote control? Quiz: Endpoint security on a budget Opinion: Gartner gets NAC wrong, again What security software should be installed on Internet café computers? Information Security Policies, Procedures and Guidelines Essential guide: Pandemic planning for H1N1 Whitelists, SaaS modify traditional security, tackle flaws Melissa Hathaway urges more cooperation, government attention to cybersecurity Reuters: Obama ready to select cyber security czar How a corporate Twitter policy can combat social network threats Should enterprises be concerned with Twitter in the workplace? Information security management hype: Debunking best practices Data breach avoidance begins with security basics, panel says Expert: Information security spending often restricts innovation GAO report cites government weaknesses, data leakage

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary dumpster diving  (SearchSecurity.com) Honeynet Project  (SearchSecurity.com) insider threat  (SearchSecurity.com) National Computer Security Center  (SearchSecurity.com) pretexting  (SearchCIO.com) shoulder surfing  (SearchSecurity.com) single-factor authentication (SFA)  (SearchSecurity.com) social engineering  (SearchSecurity.com) Total Information Awareness  (SearchSecurity.com) trusted computing  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary