Clear Screen Policy aims to protect the confidentiality and integrity of all data in any information processing facility of the organization.
This policy shall apply to all team members.
3.1 Computers must be set to auto lock after a maximum of 5 minutes of non-use.
3.2 Team members must log off from their computers whenever they leave their workstation by using the alt+ctrl+delete function or window key + l
3.3 Team members must turn off their computers and monitors at the end of each work shift.
3.4 Team members must save all files to the appropriate folder in the File Server and not store any files on the desktop hard disk.
3.5 Team members who use laptops must save all files to the appropriate folder in the server and are only allowed to store files on the laptop hard disk that are required for remote work. The laptops all have fully encrypted hard disk drives
3.6 All desktops and laptops are preconfigured with the standard desktop and screensaver and team members must not change them.
3.7 Encryption technologies must be implemented, whenever available, when sending private and confidential data.
3.8 Audits, random and planned are conducted to ensure the implementation of this policy.
4.1 IT Team is responsible for installing encryption technology on all IT mobile infrastructures.
4.2 Internal Auditors are responsible for conducting random audits to ensure this policy is enforced.
4.3 Any immediate superiors or ISO Team members must report any violation.
8.1 ISO 19011:2004 Guidelines for Quality and/or Environmental Management Systems Auditing
8.2 ISO/IEC 27001:2006 (ISO/IEC published 2005) Information Technology – Security Techniques – Information security management systems – Requirements
8.3 ISO/IEC 17799:2006 (ISO/IEC published 2005) Information Technology – Security Techniques Code of Practice for information Security management
8.4 Table of Offenses
8.5 Code of Conduct