Procedures

---

A procedure is detailed instructions for completing a task in a way that complies with policies and standards.

Personnel Management

• IAM involves both IT/security procedures and HR policies
• applied in 3 phases:
  • Recruitment
  • Operation (working)
  • Termination or Separation

Background Checks

A background check determines that a person is who they say they are and are not concealing criminal activity, bankruptcy, or connections that would make them unsuitable or risky.

Onboarding

• tasks involved in onboarding:
  • secure transmission of credentials
  • asset allocation
  • training/policies

Playbooks

• playbooks establish a central repository of standardized strategies and tactics
• ensure consistency in operations
• facilitate knowledge sharing and continuity
• mitigate risks by
  • documenting critical procedures
  • preserving institutional knowledge
• provide reference point for tasks
• help in onboarding
• are a tool for quality assurance and continuous improvement
  • can monitor effectiveness of procedures and improve if needed

Info

Best practice guides for developing playbooks:

• The MITRE ATT&CK framework
• NIST SP 800-61
• Open Security and Safety Alliance (OSSA)

Change Management

• changes should be carefully planned
• trial the change first
• should be accompanied by a rollback (or remediation) plan
• should be scheduled sensitively
• impact should be assessed

Offboarding

• security processes:
  • account management
    • disable user account and privileges
    • ensure information assets are accessible (encryption keys, passwords-protected files)
  • company assets
    • retrieve company assets
  • personal assets
    • wipe employee-owned devices of corporate data and applications