DUE 1-13 CSIA Week 1 Disc
docx
keyboard_arrow_up
School
University of Maryland, University College *
*We aren’t endorsed by this school
Course
300
Subject
Information Systems
Date
Feb 20, 2024
Type
docx
Pages
3
Uploaded by gnomechild666
Welcome to Padgett-Beale and your first week as a management intern.
The Chief of Staff will be hosting a working lunch this week for your group of interns. In addition to the usual introductions and "getting to know you" discussions, you've been advised that there
will be a discussion of the following article.
https://securityintelligence.com/seasonal-employee-security-risks-
present-danger-proactive-defense/
Each intern has been asked to write and bring a discussion paper containing their written responses to the following questions:
What steps can (should) managers take to reduce security risks associated with hiring seasonal or temporary employees? (Consider whether or not the Secure Computer User training course would be appropriate for these employees.)
How can managers show leadership in the area of cybersecurity defenses and best practices?
Consider the ways in which these types of companies are likely to use seasonal employees and the types of digital assets / information to which these temporary employees may have access.
implement a solid onboarding and integration processes
20 percent fraud increase over the holiday season – existing employees who take advantage of busy season and new employees
Stealing credit card information or usernames and passwords Consider the work of shipping agents and drivers during the holiday rush. They need access to company network portals, which contain consumer names, addresses and even credit card information if returns or refunds are necessary
The first step in defending against data-based seasonal employee security risks is to use a test environment for training.
Access permissions - IT must ensure each employee only has access
to data critical to his or her current role and responsibility
hiring managers should decide on a common end date for temporary staff.
When employees walk out the door after their final shift, their accounts should be deactivated
By providing access to necessary files and functions, well-trained temporary workers can diffuse tense situations and improve customer retention outcomes over the holiday season
always have seasonal staff sign documents indicating that their employment is at will or specify a certain end date
nondisclosure agreement clearly stating that they have no claim to corporate data and forbidding the transmission or duplication of this information outside necessary business use
Temporary workers will have access to company data so the interview process should be the same as with full-time employees. The training and onboarding process should also be the same for new hires, so if the new full-time employees are using the Secure Computer User training course, then the temporary workers should be as well. Keeping a consistent training process can also make the transition from temporary worker to full-time worker much easier. A testing area is an ideal way to see how well new employees treat sensitive data without exposing the company's information. Having a contract
with a clear end date for employment that includes a nondisclosure agreement is the best way for a company to protect itself legally.
The simplest way for managers to show leadership is to follow the rules established. If an employee sees the leader not taking their role in the defense of the company’s data seriously, they will think they can ignore the procedures as
well. Another important step leaders can take is to be consistent. Consistency creates order and can mitigate risk.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
- Access to all documents
- Unlimited textbook solutions
- 24/7 expert homework help