UCF STIG Viewer Logo

Position of Trust - Local Policy Covering Employee Personal Standards of Conduct and Responsibilities


Overview

Finding ID Version Rule ID IA Controls Severity
V-32340 PE-01.03.02 SV-42677r2_rule PRRB-1 Low
Description
Failure to inform personnel of the expected standards of conduct while holding a position of trust can result in conduct by the individual that will require them being removed from that position and/or result in an untrustworthy person continuing in a postion of trust without proper vetting of new derogatory information.
STIG Date
Traditional Security 2013-07-11

Details

Check Text ( C-40789r2_chk )
Checks:

Check to ensure that a local policy exists and is readily available to employees that informs them about pertinent security regulations and standards of conduct required of persons holding positions of trust, including (and especially) the requirement to report derogatory information to their local security manager.

SOPs should be readily available to all employees in a common reading library or more efficiently, accessable on line in a common file or organization intranet.

TACTICAL ENVIRONMENT: The check is applicable for fixed (established) tactical processing environments where procedural documents (SOPs) should be in place. Not applicable to a field/mobile environment.
Fix Text (F-36253r1_fix)
Fix:

Ensure that a local policy exists and is readily available to employees that informs them about pertinent security regulations and standards of conduct required of persons holding positions of trust, including (and especially) the requirement to report derogatory information to their local security manager.

SOPs should be readily available to all employees in a common reading library or more efficiently, accessable on line in a common file or organization intranet.