Employee Seperation Lockout Procedure

Employee Separation Lockout Procedure

Purpose

To protect intellectual property and maintain security. This is accomplished with the establishment of a procedure to change critical system passwords and disabling access to critical systems.

  • Disclaimer

    • Pre-Planning

    Information required to Proceed with Lockout
  • Acquire user names and passwords of all systems maintained by employee.
  • Test access per the checklist to ensure accuracy.
  • Acquire all contact information for 3rd parties that need to be notified.
  • Communicate with upper management when the date of separation will be.

    • Lockout Procedures (Day of)

  • For terminations, have an engineer be onsite at the time that the employee will be terminated.
  • For voluntary separations, the lockout procedure can be performed on the last day of employment.
  • The engineer will begin changing perimeter system passwords first; disable the user’s account, etc., per the checklist.
  • The engineer will test each system to ensure they still function.
  • If there are any services that cannot be changed immediately, the systems will be changed during a time agreed upon.
  • After all systems are changed and tested, expect to beinformed the work is completed.

    • Items to Address

  • Firewall passwords
  • SSL VPN password
  • Change Anti-Spam password
  • Domain and SSL certificate management passwords
  • Passwords on any system account having remote access
  • Security system password
  • Video surveillance system password
  • Remove HVAC system management account password
  • Phone system management passwords

    • Post Lockout Day

    Have an engineer be present the first day after the lockout to ensure all systems are running smooth.

    Inform each vendor having a relationship with the individual separated from the company that the employee is no longer with the company or Cal Net for support reasons.