Compare cert salaries and plan your next career move
murdatapes wrote: » Let me start disabling after you tell him/her, don't put me in it. Period.
Paul Boz wrote: » That is a poor security practice and you are in the wrong in those situations. Every organization that is legit should have an IT termination procedural document in place. Network access should be revoked prior to an employee being terminated because once the determination has been made to terminate an employee their services for the company are rendered null and void. This includes access to corporate assets such as the network and provided hardware. It sucks that IT has to be involved in this but hey, thats the nature of the job. Other departments have to deal with the same thing (revoking rights in the organization) but its usually transparent for them. IT is different because it is non-transparent. In fact, at my old company when someone felt they were on the hot seat they'd try to log into webmail and if they couldn't they assumed the worst and didn't come in.
Paul Boz wrote: » When I got let go they held my last pay check until I returned a one-time token generator that was provided to me for network access.
networker050184 wrote: » I agree here. You must disable access first. It kind of defeats the purpose if you disable access after you fire them.
tiersten wrote: » Yup. I've seen people cause havoc because their accounts weren't disabled before they were fired. It ranged from abusive messages sent to everybody to actual attempts to delete or sabotage data. Disabling all of their remote access abilities as well is vital. Security should come escort them to their desk, check what they're packing and then escort them outside after taking any keys or keycards off them.
murdatapes wrote: » Trust me I feel you. I understand the procedure (come to door badge not working, email doesn't work, they let you come to the meeting but after its lets have a talk). My situation was different cause they were friends of mine. So wrong? Maybe. But I will be wrong to get over the fact, that I felt like I helped a friend get fired. Try to feel me in that particular situation, before I am totally wrong. I just didn't like how It seemed I help.
murdatapes wrote: » Try to feel me in that particular situation, before I am totally wrong. I just didn't like how It seemed I help.
pwjohnston wrote: » Yes, BUT it seems more logical to me that unless they pose an immediate security risk that the disabling happens just before the employee is terminated. eg I'm disabling access while the manager is walking the employee into their office to give them the news or maybe 5 min before. This is specifically for non-tech positions. I could understand why it may be different for other Network/Systems Admins since they have more access to cut them off earlier.
Paul Boz wrote: » Please show me a corporate environment that employs an IT staff that is capable of coordinating a termination with the guy doing the firing in a five minute window. Your concept of perceived threat and risk is skewed a bit. As soon as an employee is deemed unnecessary for the organization they become a security risk. It ties into the concept of least privilege.
pwjohnston wrote: » Point taken. I mean is it really that difficult for the manager to call IT and say "do it" right before they go get the person?
sambuca69 wrote: » At my last job, I did some desktop support. When they term'd people, they would actually ask me to go to their workstations, and physically disconnect them from the LAN. Many times, they wouldn't even know yet. lol... talk about awkward. "I have to check something under your desk. *pulls cable and runs*, basically
veritas_libertas wrote: » WOW!! You would think it would be easier to just turn off their ports remotely on the switch or maybe physically at the switch?
Paul Boz wrote: For those who want to do some more reading on this subject please read these links:Termination procedures and the exit interviewEmployment Termination - Employment Ending Checklist at Employment TerminationSample Termination Checklist - CSO Online - Security and Risk
Paul Boz wrote: » Yes that is a poor security procedure at best.
Paul Boz wrote: » Oh I agree with you that it is indeed a stressful situation, but your job is your job and your friends are your friends. If your employer deems that person's services not necessary any more its still your job to comply and put on a good face about it. If they truly are your friends they won't hold you doing your job against you. If they do, they're not really good friends. I've had friends snub me after they got let go because I refused to grind an axe against my employer because of it. They equate my friendship and continued employment as a betrayal. In fact, the guy that got me my job at my current employer quit to go somewhere else then called to talk **** about my current employer for several weeks after he left. I got tired of it and told him that he needed to chill out and not care so much about a place that he no longer worked. We no longer talk to each other beyond courtesy because he couldn't separate my employment from our friendship. That's his problem, not mine.
pwjohnston wrote: » Not more than 30 min later I get a call on my personal cell from one of the employees. He’s complaining because his VPN doesn’t work and is kind of upset. WHAT do you say in that situation??? Essentially they had me turn off access before they even told him. Now I understand there is a *possible* security risk here, but shouldn’t there be a clear process where the SysAdmin shouldn’t be involved?
RobertKaucher wrote: » You need to have a sitdown with HR and your manager regarding what they expect you to say. Even directing them to talk to their manager or to talk to HR might be the wrong thing to say. I would get a clear expectation from your boss just incase this ever happens again.
Lizano wrote: » Isn´t it mandatory to give the employee access to the PC one last time under supervision to retrieve any personal info he may have in that box? Of course at this point probale email account should be disabled at least and application logins as well, but I think depending on State Legislation, you may be forced to let him retrieve personal info.
mikedisd2 wrote: » I don't think there would be any company that caters for people's personal data. Officially speaking it shouldn't be on the company systems. They might even say that it is now company property (though I doubt it, still why trust em?).
Paul Boz wrote: » Yes, it usually is. In any decent organization with a well-run IT department, you can't just call the help desk and say "Employee X is being fired right now, I need network access removed right away."
Compare salaries for top cybersecurity certifications. Free download for TechExams community.
