o Perform integrity checks on all new employees to make sure that theyhaven’t lied about their background, experience or qualifications.o Give all new employees a simple introduction to information security, andmake sure that they read and understand your information security policy.Make sure they know where to find details of the information securitystandards and procedures relevant to their role and responsibilities.o Ensure that employees have access only to the information assets theyneed to do their jobs. If they change jobs, make sure that they do notretain their access to the assets they needed for their old job. Whendismissing employees, ensure that they do not take with them anybusiness-critical information.o Make sure that no ex-employees have access rights to your systems.o Make sure your employees know about the common methods that can beused to compromise your system. These include e- mail messages thatcontain viruses and ‘social engineering’ ploys used by hackers to exploitemployees’ helpfulness to gain information that will give them access toyour system. Examples of ‘social engineering’ include a hacker using thetelephone to pose as a systems maintenance engineer or pretending to be anew employee.

Tags: Business security, Computer-security-tools, Data Security, network-security, security audit