Scribd
Upload
187 views10 pages

OAC Staff Turnover Management

This document outlines best practices for managing employee turnover at the University of Pennsylvania's Office of Audit and Compliance (OAC). It discusses providing new employees with an orientation binder, establishing policies for IT equipment usage and access termination, collecting equipment from departing employees, and reusing computing equipment by reimaging or wiping devices to remove prior user data. The presentation agenda and background section provide additional context about the OAC and its computing support structure.

Uploaded by

sweta_kakati
Copyright
© Attribution Non-Commercial (BY-NC)
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
187 views10 pages

OAC Staff Turnover Management

This document outlines best practices for managing employee turnover at the University of Pennsylvania's Office of Audit and Compliance (OAC). It discusses providing new employees with an orientation binder, establishing policies for IT equipment usage and access termination, collecting equipment from departing employees, and reusing computing equipment by reimaging or wiping devices to remove prior user data. The presentation agenda and background section provide additional context about the OAC and its computing support structure.

Uploaded by

sweta_kakati
Copyright
© Attribution Non-Commercial (BY-NC)
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 10

Managing Turnover:

Best Practices
Dan Hill, CISA
Information Systems Auditor

MacNet/PCNet Meeting
University of Pennsylvania
October 21, 2004

University of Pennsylvania
Agenda

• Background - OAC
• Orientation
• Policies
• New Hire Process
• Termination Process
• Staff Exit List
• Reuse of Computing Equipment
• Staff Exit List
• Conclusion

University of Pennsylvania
Background - OAC

• OAC - Office of Audit and Compliance


• Currently staff of 23
• Computing hardware supported by ISC
• One on-staff LSP (plus responsible for
other administrative duties)
• ISP support provided when needed

University of Pennsylvania
Orientation

• Orientation Binder for each new hire or transfer


– OAC specific information
– General Penn / Penn Medicine Information
– Internet Resources
– Professional Development
– Maps
– OAC Policies
– OAC Administrative Support Model
– Email policy
– ISC service offering
University of Pennsylvania
OAC Policies
• I/T Related Only
- Laptop Security Policy
- Request for Computer Hardware, Software, and
accessories
- email footer
- Use of spare computers, accessories
- Personal software installation
- Electronic calendaring
- PDA - Palm Security Policy
- Use of personal desktop firewall
- VPN Account Usage (includes termination process)
- Disaster Recovery / Business Continuity
University of Pennsylvania
New Hire Process

• Admin notified of new staff member by receipt of


their personnel record from the hiring officer
• Data is entered into the Payroll/personnel system
• If required, an ISC Service Request is generated for
preparing or acquiring a laptop and/or PDA
• After employee starts
• Admin conducts an orientation session with new hire and reviews
the Orientation Binder
• 2nd day: Employee applies for PennCard ID and PennKey, other
building access if needed, and applications access

University of Pennsylvania
Termination Process

• Admin receives employee’s resignation letter


• Admin provides employee with an exit list
• Admin completes system account and access
termination forms
• Admin completes exit list check-off on employee’s
last day
• Admin logs on to the computer to confirm no other
passwords (hardware) were installed
• Admin takes the computer / PDA and returns to
inventory
University of Pennsylvania
Staff Exit List

• Sample for Return of items


– PennCard
– HUP Photo ID
– PAH Hospital ID
– Other Hospital ID
– American Express card
– AT&T Calling card
– SOM Access Key
– Keys – Office, Suite, Desk, Cabinet
– Computer equipment and accessories
• System Account Terminations

University of Pennsylvania
Reuse of Computing Equipment

• All user directories are copied to other user’s


directory if it is project related or the directory is
archived and removed from the computer
• Laptops/desktops are re-imaged
• PDAs are wiped by performing a hard reset and
selecting the option to erase all data
• Secured flash drives are wiped and password reset
to a department default until reissued

University of Pennsylvania
Conclusion

OAC website
http://www.upenn.edu/audit

Any Questions?

University of Pennsylvania

You might also like