Please enable JavaScript.
Coggle requires JavaScript to display documents.
Security functions (employment policy + practice (evaluating performance,…
Security functions
employment policy + practice
training
SETA
evaluating performance
info sec included in employee performance evalu
has significant impact on emp behaviour
orientation
briefed on policies and procedures
levels of access outlined
background checks
identity check
education and credential checks
contracts
written agreement
non disclosure agreement
positions +responsibility
chief information security officer
develops tactical plans
sets priorities on purchases and implementation
develops/manages overall sec programme
Sec manager
resolves issues identified by technicians
accomplish objectives identified b CISO
Accountable for day 2 day operations of info sec programme
board/director
sec technician
configure firewalls
deploy IDPSs
implement sec software
ensure info sec is properly implemented
privacy+sec of personal data
in principle
no diff from other sensitive info of firm
in practice
more regulations
Firms by law need to protect personal + sensitive emp info
NI number, finance data
Medical Conditions
address, phone number
Names/address of fam members
vetting
3 levels of national sec clearance
security check(SC)
Developed vetting (DV)
counter terrorist check (CTC)