Information Security Policies

CHAPTER 10

ADDRESSING PERSONNEL ISSUES RELATING TO SECURITY

 

 

Section 1001

Contractual Documentation

 

 

Preparing Terms and Conditions of Employment

Employing / Contracting New Staff

Contracting with External Suppliers / other Service Providers

Using Non Disclosure Agreements (Staff and Third Party)

Misuse of Organization Stationery

Lending Keys to Secure Areas to Others

Lending Money to Work Colleagues

Complying with Information Security Policy

Establishing Ownership of Intellectual Property Rights

Employees' Responsibility to Protect Confidentiality of Data

 

 

Section 1002

Confidential Personnel Data

 

 

Respecting Privacy in the Workplace

Handling Confidential Employee Information

Giving References on Staff

Checking Staff Security Clearance

Sharing Employee Information with Other Employees

Sharing Personal Salary Information

 

 

Section 1003

Personnel Information Security Responsibilities

 

 

Using the Internet in an Acceptable Way

Keeping Passwords / PIN Numbers Confidential

Sharing Organization Information with Other Employees

Using E-Mail and Postal Mail Facilities for Personal Reasons

Using Telephone Systems for Personal Reasons

Using the Organization’s Mobile Phones for Personal Use

Using Organization Credit Cards

Signing for the Delivery of Goods

Signing for Work done by Third Parties

Ordering Goods and Services

Verifying Financial Claims and Invoices

Approving and Authorization of Expenditure

Responding to Telephone Enquiries

Sharing Confidential Information with Family Members

Gossiping and Disclosing Information

Spreading Information through the Office ‘Grape Vine’

Playing Games on Office Computers

Using Office Computers for Personal Use

 

 

Section 1004

HR Management

 

 

Dealing with Disaffected Staff

Taking Official Notes of Employee Meetings

 

 

Section 1005

Staff Leaving Employment

 

 

Handling Staff Resignations

Completing Procedures for Terminating Staff or Contractors

Obligations of Staff Transferring to Competitors

 

 

Section 1006

HR Issues Other

 

 

Recommending Professional Advisors

 

 

 

 


 

 

 

 

Further Information
Information security and ISO 17799 papers can be submitted via our contact page.