The following infosec artifacts shall be submitted to internal audit as completed:

  1. Background Check
  2. Offboarding Confirmation
  3. Transfer Confirmation
  4. New Hire Confidentiality Agreement
  5. Certificate of Data Destruction
  6. Employee Access Checklist (updated when employee onboarded, offboarded or role changes)
  7. New Hire Information Security Checklist (see below)
  8. Information Systems Risk Assessment (Reference System Acquisition Policy)

On hire all employees will be required to digitally sign the 'New Hire Information Security Checklist':

  1. Completed the information security training
  2. Windows security is turned on their company issued windows computer
  3. Screen lock screen with password is enabled on their company issued computer
  4. Acknowledgement that they will not install software that is not on the approved software list