It is common practice in many enterprises to monitor technology use. It is essential to notify employees of any monitoring that takes place on the systems they use. In the event of a policy violation or even a criminal act, full disclosure of potential monitoring on the part of the enterprise is essential in advance of the event if you hope to take decisive remedial action against an individual. Failure to do so could not only leave you unable to act, but also could give cause for an employee to launch a privacy violation suit against the enterprise. The following policy template outlines key elements to include in an employee monitoring policy for your authorized monitoring personnel.
Employee Monitoring Policy – IT-Facing
TagsSIEM, Identity and Access Management, User and Event Behavior Analytics, UBA, UEBA, Microsegmentation, Principle of least privilege, Accidental Insider, Insider Attack, Risk Management, Insider Threat program, employee monitoring, employee monitoring policy, privacy, ethical monitoring policy, data classification, personal identifying information
View the Complete Blueprint:
Reduce and Manage Your Organization’s Insider Threat Risk
Insider threats are not always malicious, but that doesn’t mean they won’t cause damage.