CPP-Infinit-O_0009_V2_Access Rights

CPP-Infinit-O_0009_V2_Access Rights



Company Policy & Procedure  

Review of Access Rights  

Ref. No.: CPP-Infinit-O_0009 

Version 

2.0 

Page 

Of 

Prepared 

G. Malonzo 

16-May-2017 

Approved 

R.Tan 

16-May-2017 

Filename 

CPP-Infinit-O_0009_V1_Access  Rights


1.0 Objective
To establish the guidelines in the conduction of access rights review with consideration to  employment changes and/or grant of special privileged access rights.  

  

2.0 Scope
The scope of this procedure covers all Infinit-O employees and visitors who are given access  rights to any information processing facilities in the organization.  

3.0 Provisions  
3.1 Access right is granted to a new hire or to a team member who transfers to another account  as indicated in the HR New Hire Checklist or Transferee Checklist. 
3.2 Corporate access right is given to selected leaders of projects and departments. These  selected leaders are delegated certain administrative privileges and are able to provide   or establish new rights for other users as needed and with approval of immediate head. 
3.3 Disabling of access is made when one is placed on suspension or leave of absence. The  access can be reactivated upon return to work. 
3.4 Revocation is implemented on the last day of a separated team member.  
3.5 Leaders Circle must ensure that temporary special access rights to visitors are revoked as  soon as the visitors’ official visit to the company ends.  
4.0 Responsibility
4.1 IT Team reviews the access rights at least once a year or during the Asset Register and Statement of Applicability reviews.
4.2 HR, IT and Finance team implements new guidelines or changes on access grant and/or revocation when necessary.  
5.0 Frequency  
As necessary.  
6.0 Distribution  
6.1 ISO Team 
6.2 CSG 
6.3 Support Services Team 
7.0 Usage  
7.1 ISO Team reviews the Access Control List (ACL) that is maintained by the IT Team.  Changes in employment status such as promotions, transfers to different teams,  demotion or separation must be considered in all reviews.  
7.2 ISO Team reviews existing authorizations on special privileged access rights and  determines if there is a need to continue the granted access right.  
7.3 Refer to CP-IT-0101 for other guidelines.  
8.0 References
CP-IT-0101  
9.0 Records 
ACL
New Hire Checklist 
Transferee Checklist
Emails from Management Team  


    • Related Articles

    • CPP-IT-0309_V5_Information Systems Development and Maintenance Policy

      1. Objective The purpose of this policy and procedure is to define and implement robust, secure, and standardized practices throughout the software lifecycle, including design, development, testing, deployment, and maintenance. 2. Scope The Software ...

    • INFINIT-O_Employee_Handbook

      Download the Full employee handbook attached

    • CPP-HR 0144 Infinit-O Doctor Primary Care and Dependent Medical Consultation Policy

      Objective Infinit-O is fully committed to protecting the health and welfare of our team members and their HMO-enrolled dependents. This policy establishes the mandatory procedures for accessing primary healthcare, ensuring that all employees, ...

    • CPP-IT-0101_V5_Access Control Policy

      Version Approval Date Author Changes Approved By 1.0 01/04/2010 Wilmar Cundangan First Version,Creation Cecile Malay 2.0 05/01/2017 Wilmar Cundangan Update references and overhaul Richard Eldridge 3.0 06/09/2021 Wilmar Cundangan Added provisions for ...

    • How do I access Infinit-O email on my Android Device?

      Accessing Infinit-O email on your android device makes it easy to not only access your emails, but also connect to other Google services, such as Google Chat, Google Drive, Google Meet, and so on. Also, you may easily reach out IT Department for some ...