|
New Hanover County Information Technology Department |
Issued: 10/09/02 |
|
|
Policy Number: 6-06 |
||
|
Subject: SECURITY AUDIT |
||
PURPOSE AND SCOPE:
To provide the authority for members of New Hanover County Government's IT Department team to conduct a security audit on any system at New Hanover County Government.
Audits may be conducted to:
· Ensure integrity, confidentiality and availability of information and resources
· Investigate possible security incidents and ensure conformance to New Hanover County Government security policies
· Monitor user or system activity where appropriate.
This policy covers all computer and communication devices owned or operated by New Hanover County Government. This policy also covers any computer and communications device that is present on New Hanover County Government premises, but which may not be owned or operated by New Hanover County Government.
Any employee found to have violated this policy may be subject to disciplinary action, as outlined in the Personnel Manual
CHANGE SUMMARY:
None. This is the Original Document.
POLICY:
When requested, and for the purpose of performing an audit, any access needed will be provided to members of New Hanover County Government's IT Department team.
This access may include:
· User level and/or system level access to any computing or communications device
· Access to information (electronic, hardcopy, etc.) that may be produced, transmitted or stored on New Hanover County Government equipment or premises
· Access to work areas (labs, offices, cubicles, storage areas, etc.)
· Access to interactively monitor and log traffic on New Hanover County Government networks.
CHANGE HISTORY:
|
Version |
Date |
Author |
Comments |
|
A |
03/19/02 |
SCT |
Original Document |
|
B |
10/09/02 |
SCT |
Revised per Director’s Comments |