Outprocessing Procedures for Departing or Terminated Employees (Military, Government Civilian and Contractor)

From Traditional Security

Part of Outprocessing Procedures

Associated with IA controls: PESP-1

SV-42762r2_rule Outprocessing Procedures for Departing or Terminated Employees (Military, Government Civilian and Contractor)

Vulnerability discussion

Failure to properly out process through the security section allows the possibility of (unauthorized) continued access to the facility and/or the systems.

Check content

Check outprocessing procedures. Review a sampling of personal security files of departed personnel to ensure compliance. Ensure the procedures and records of departed employees reviewed include removal from access to Government Information Systems, turning in all access badges, classified or sensitive information and signing of an SF 312 acknowledging the debriefing. NOTE: The SF 312 is only applicable for those persons holding a security clearance. TACTICAL ENVIRONMENT: The check is applicable for fixed (established) tactical processing environments where procedural documents (SOPs) and personnel records should be in place. Not applicable to a field/mobile environment.

Fix text

Ensure there are local procedures covering the outprocessing of departing employees (Military, Government Civilian and Contractor) and that records of departed employees on-hand reflect that outprocessing was conducted and include things such as, removal of access form Government Information Systems, turning in all access badges, classified or sensitive information and signing of an SF 312 acknowledging a debriefing. NOTE: The SF 312 is only applicable for those persons holding a security clearance.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer