Staff contracts & code of conduct ensuring secure organisation systems
- Thread starter mrapoc
- Start date
mayhem
New member
1) Helps towards curving un social activities.
2) protection for the company against any untoward software or malware.
3) Securing the environment from any alien software.
4) Legally binding the user to any forthwith content.
5) Full control of applications and there content.
ect ect ect
2) protection for the company against any untoward software or malware.
3) Securing the environment from any alien software.
4) Legally binding the user to any forthwith content.
5) Full control of applications and there content.
ect ect ect
mayhem
New member
No problem but i honestly think you should use them examples and expand on each idea into a full paragraph . that way it shows understanding and the opertunaty to expand it and open it to question.
Extra Marks
....
You could all ways throw in some real life example e.g Orange in Darlington).
1) 16 (might have been more i cannot remember) staff were either disciplined for miss use of the email system. They passed on to each other a joke that was raciest and of questionable content. Eventually the email found its way to some one of that race that it wasn't intended for and upset the person. The person took 1 month of work due to distress and of course this cost the company money.
So misuse and social engineering was the problem.
2) Cannot name the company but. Out side work was brought into a blue chip company and the user happened to be technical staff with what was know as golden admin right (he had access to ever thing). The lap top was all so used by his own son for collage work. Some how the laptop had been infected with a virus. When the laptop was connected to the Network to transfer file this should have set off a virus protector but unbeknown to the company the user had disabled it on his account so he could have faster file transfer. with in hours the whole company was effected as his persimmons were sped with the virus.
This cost the company thousands of pounds and man hours to fix the problem. All so not to mention the user lost his job. If the user had stuck to the code of conduct and SOP's (service operating procedures (this is what they are normally called in a company)) this would have never happened.
Extra Marks
....You could all ways throw in some real life example e.g Orange in Darlington).
1) 16 (might have been more i cannot remember) staff were either disciplined for miss use of the email system. They passed on to each other a joke that was raciest and of questionable content. Eventually the email found its way to some one of that race that it wasn't intended for and upset the person. The person took 1 month of work due to distress and of course this cost the company money.
So misuse and social engineering was the problem.
2) Cannot name the company but. Out side work was brought into a blue chip company and the user happened to be technical staff with what was know as golden admin right (he had access to ever thing). The lap top was all so used by his own son for collage work. Some how the laptop had been infected with a virus. When the laptop was connected to the Network to transfer file this should have set off a virus protector but unbeknown to the company the user had disabled it on his account so he could have faster file transfer. with in hours the whole company was effected as his persimmons were sped with the virus.
This cost the company thousands of pounds and man hours to fix the problem. All so not to mention the user lost his job. If the user had stuck to the code of conduct and SOP's (service operating procedures (this is what they are normally called in a company)) this would have never happened.
One thing alot of large companies are switched onto now and cover in their code of conduct and employment contracts is IP (intellectual property) theft. Some places have banned USB sticks due to fears of employees stealing business critical data, or due to the risk of introducing viruses/malware.
Then there's the Data Protection Act, which has strict guidelines on how you use/manage/protect and store data on your clients. Any code of conduct or employment contract should ensure that the employee is acting in accordance with the DPA. This can be done by setting in place working practices, which are clearly defined.
Then there's the Data Protection Act, which has strict guidelines on how you use/manage/protect and store data on your clients. Any code of conduct or employment contract should ensure that the employee is acting in accordance with the DPA. This can be done by setting in place working practices, which are clearly defined.
Data protection act was what I was going to mention ^
A large amount of our conduct and IT policy rules in work revolve around it. Agents are forbidden from any social networking sites on the grounds that they are means of passing on customers information. We have several celebrities on the database, including addresses, phone numbers, next of kin etc
Use of mobile phones around the computer system is also forbidden for the above reasons. Adhering to the rules does tend to reassure customers, some of them get stressed when agents quiz them on date of birth, mothers maiden name, first pet etc etc but when explained that without it, anyone could ring up and make payments, cancel services, take out setanta and stuff like that they understand fully
A large amount of our conduct and IT policy rules in work revolve around it. Agents are forbidden from any social networking sites on the grounds that they are means of passing on customers information. We have several celebrities on the database, including addresses, phone numbers, next of kin etc
Use of mobile phones around the computer system is also forbidden for the above reasons. Adhering to the rules does tend to reassure customers, some of them get stressed when agents quiz them on date of birth, mothers maiden name, first pet etc etc but when explained that without it, anyone could ring up and make payments, cancel services, take out setanta and stuff like that they understand fully
Rastalovich
New member
Big thing for corporations is users being aware that they're not free to go downloading stuff and installing it.
Can be anything as simple as WinRAR, a text editor, even FireFox - in the main programs such as these are free to use as intended for single 'home' users, and are licensed that way. (often the readable bit u click "Agree" to without reading)
However, firms, companies, corporations etc generally are required to have licenses for them that are suited to their business environment.
Many companies will audit computers for installed software, some even use a "bot" (for want of a better term) that will check computers on a network for approved software and uninstall those that aren't allowed. Stuff found on a bigger scale can bring further action depending on the situations.
Establishments like FAST do grade companies, and have a willingness to check that companies are within regulations regarding licensing (in their various forms) - and they do assign grades in the form of gold/silver/bronze/something to companies which they have experience with and.. if u like.. determines how much they may be willing to stick their nose in ur business, to crudely put it.
Apart from the downloading/installation of software and it's legalities to a firm, there's also the issue of these things contributing to OS failiures - which ofc leads to costs in terms of the local IT having to fix/rebuild.
Software as described above can in 99% of the cases be used by the user if they have a need/work reason for having them. This often comes in the form of a 'request' that begins a procedure of either purchasing, allocating licenses or an IT guy installing stuff - in the main, at this point, within the approved library, all the licenses 'should' be legit and software tested against the OS install the company uses. Can take some time depending on circumstances. I say 'should' as even the best of "Gold FAST" regarded companies do have to police themselves as having 1000s of installs of Nero7 isn't good when u have a license for 950. OR ur lcense only applies to Nero6.6 currently - even if it's an OEM cd install.
Can be anything as simple as WinRAR, a text editor, even FireFox - in the main programs such as these are free to use as intended for single 'home' users, and are licensed that way. (often the readable bit u click "Agree" to without reading)
However, firms, companies, corporations etc generally are required to have licenses for them that are suited to their business environment.
Many companies will audit computers for installed software, some even use a "bot" (for want of a better term) that will check computers on a network for approved software and uninstall those that aren't allowed. Stuff found on a bigger scale can bring further action depending on the situations.
Establishments like FAST do grade companies, and have a willingness to check that companies are within regulations regarding licensing (in their various forms) - and they do assign grades in the form of gold/silver/bronze/something to companies which they have experience with and.. if u like.. determines how much they may be willing to stick their nose in ur business, to crudely put it.
Apart from the downloading/installation of software and it's legalities to a firm, there's also the issue of these things contributing to OS failiures - which ofc leads to costs in terms of the local IT having to fix/rebuild.
Software as described above can in 99% of the cases be used by the user if they have a need/work reason for having them. This often comes in the form of a 'request' that begins a procedure of either purchasing, allocating licenses or an IT guy installing stuff - in the main, at this point, within the approved library, all the licenses 'should' be legit and software tested against the OS install the company uses. Can take some time depending on circumstances. I say 'should' as even the best of "Gold FAST" regarded companies do have to police themselves as having 1000s of installs of Nero7 isn't good when u have a license for 950. OR ur lcense only applies to Nero6.6 currently - even if it's an OEM cd install.
