Maxi-Pedia Forum

Information Technologies and Systems (IT/IS) => Security => Topic started by: ramki on October 19, 2008, 08:22:58 pm



Title: HR policies related to information security ISO 27001?
Post by: ramki on October 19, 2008, 08:22:58 pm
Hi,

Anyone has experience drafting security policies related to HR from the perspective of ISO 27001? We are implementing ISO 27001, and it looks like we may need to address HR from the information security perspective too. Maybe some disclaimers that emploee need to sign that they won't disclose information, etc? Any ideas, pls?

Tx.


Title: Re: HR policies related to information security ISO 27001?
Post by: atari on November 10, 2008, 12:07:31 pm
For example that access to your IT/IS for departing employee be restricted immediately.
Or, that your departing employee login logs be archived for some time.
Or, that you new employee takes mandatory information security training.
Etc.


Title: Re: HR policies related to information security ISO 27001?
Post by: mismas on November 10, 2008, 12:11:39 pm
Google up "ISO 27001 policies", I am sure something will come up.