USER CERTIFICATION


Ignorance of company policies
should not be an excuse!

Home

Each employee should undergo an initial certification with annual re-certifications that reaffirm their adherence to established security policies and standards.  The initial certification process contains Information Security "Best Practices" and/or established company policies and standards.  The re-certification process includes updates or changes to existing policies and standards.            

Individuals will be required to review selected policies and standards included in the UCP; after which, they will so acknowledge by selecting the appropriate response.  This is administered electronically - executed on the security web site and forwarded (submitted) to a designated organization (e.g., Human Resources) for review and archiving.     
    
Examples:  Presentation   User Certification     

WEB SITE CONTENT

BENEFITS

The User-Certification Process includes the following: 
   
bulletElectronic Forms That Link to Selected Policies and Standards for Review and Compliance
bulletPresentation and Instructions for Use
bulletRecommendations for Administering the User-Certification Process
bulletUser Review Quiz   

Staff & contractors are kept apprised of policies and standards such as:
   
bulletAccess Control, Identification and Authentication
bulletContingency Planning and Disaster Recovery
bulletLevels of Authority and Responsibility
bulletLaw and Regulations
bulletHealth and Safety Procedures and Guidelines  
    

Our policies and standards meet or exceed the requirements of most organizations.  Where appropriate, content - vis-à-vis ISO17799 / 27001 - should be tailored to reflect the company's unique requirements.