1 / 5

Sample Teleworking Policy Released

This draft policy provides essential guidelines for secure remote work, focusing on protecting ABC Corpu2019s information assets.<br>u2705 Covers access controls, secure environments, encrypted communication & monitoring<br>u2705 Designed for employees and contractors working off-site<br>Note: This is a sample template, customize it to align with your organizationu2019s legal and operational requirements.

Azpirantz
Télécharger la présentation

Sample Teleworking Policy Released

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Teleworking Policy v1.0 Classification: Internal Sample Teleworking Policy DOCUMENT ID : NN-NNN-NN 1

  2. Teleworking Policy v1.0 Classification: Internal Version Control Version Date Prepared By Reviewed By Approved By dd-mm-yy 1.0 Change History Version Description of Change 1.0 First release Distribution List 1.Write the target audience who should receive a copy of this document. 2. 3. This document is created by the Azpirantz Marketing Team. For expert consulting aligned with your business needs, please reach out to sales@azpirantz.com. DOCUMENT ID : NN-NNN-NN 2

  3. Teleworking Policy v1.0 Classification: Internal Purpose The purpose of this policy is to establish guidelines for secure teleworking practices, with a primary focus on information security. Consequently, it mandates the identification, assessment, and management of information security risks pertinent to each individual teleworking scheme. Scope This policy governs all employees and contractors authorized to utilize ABC Corp. teleworking facilities.. It encompasses any arrangement where personnel perform work duties from an off-site location, on either a temporary or ongoing basis, and where such work involves the storage, processing, or access of confidential information in electronic or paper form. Responsibility Adherence to this policy is the responsibility of all employees and contractors, who are also authorized to follow it. The Head of Information Technology shall be responsible for and authorized to enforce this policy. Policy Statements Teleworking Access Provisioning 1.Provide teleworking facilities to selected users based on business needs and with appropriate approvals. 2.Grant teleworking access for a specific duration aligned with business requirements. 3.Obtain approval from the Head of IT, Head of Service Delivery, and Head of Information Security before granting teleworking access. 4.Ensure that only explicitly authorized personnel utilize their granted teleworking access. Prohibit any other person, including ABC Corp. employees/contractors or family/friends, from using the access. 5.Formally register all teleworking access granted to employees or contractors in the relevant records. 6.Mandate that all devices connecting to ABC Corp.’s network comply with ABC Corp.’s information security policies. DOCUMENT ID : NN-NNN-NN 3

  4. Teleworking Policy v1.0 Classification: Internal Teleworking Environmental 1.Users are required to establish and maintain a secure network environment for teleworking, which includes, but is not limited to, the following: a.Employing secure wireless networks that adhere to the organization's wireless network security standards. b.Strictly prohibiting the use of public or shared network connections for teleworking activities. c.Implementing appropriate malware and firewall protection measures. 2.Teleworking access shall be restricted to officially provisioned teleworking equipment. 3.Users bear the responsibility for ensuring the physical protection of their assigned teleworking equipment. Security of Communications 1.Users shall be responsible for maintaining the security and confidentiality of the authentication credentials provided for their teleworking access. 2.The organization shall explore the feasibility of implementing certificate-based authentication and utilize it where applicable to enhance security. 3.Teleworking sessions that remain inactive for more than thirty minutes shall be automatically terminated due to timeout. 4.All teleworking access must be conducted over encrypted sessions, and the encryption methods employed must be compliant with ABC Corp.’s cryptography policy. Monitoring and Auditing 1.All users shall be subject to monitoring and auditing activities to ensure adherence to this policy and other relevant ABC Corp. policies. 2.Any instances of non-compliance or violation of this policy must be reported to the designated incident management team. DOCUMENT ID : NN-NNN-NN 4

  5. Teleworking Policy v1.0 Classification: Internal Termination of Teleworking Access 1.Teleworking access privileges assigned to users shall be subject to periodic review and shall be revoked upon the conclusion of the authorized duration. Note: This document serves as a sample template. Organizations are required to develop a comprehensive policy that incorporates specific legal, regulatory, contractual, and business requirements. DOCUMENT ID : NN-NNN-NN 5

More Related