Friday, September 18

Security Policy Annual Acknowledgement

Over the past few years, I've encountered a number of customers who were struggling with a compliance mandate requiring employees to annually acknowledge that they have read the organization's security policy, code of conduct, or other important policy. Coreblox recently outlined how you can enforce that annual acceptance using a Web Access Management solution. If you're employees regularly need to access web resources, this is a good way to force their attention as-needed. How have you solved the problem?

1 comment:

Gregg said...

I have seen two methods used. One at the start of every new fiscal year when people use the company portal for the annual benefits enrollment, they have to acknowledge the policies. Another way was an email from legal with a link, and a deadline. Those who failed to acknowledge it faced disciplinary action.