DH_NHS IG - Remote Access Policy.doc

Travelling users eg staff working across sites or are

Info icon This preview shows pages 2–4. Sign up to view the full content.

View Full Document Right Arrow Icon
Travelling users (e.g. Staff working across sites or are temporarily based at other locations) 2.2. Home workers (e.g. IT support, Corporate Managers, IT development staff, Clinicians) 2.3. Non NHS staff (e.g. Social Services, contractors and other 3 rd party organisations) 3. Objectives The objectives of the Trust’s policy on remote access by staff are: 3.1. To provide secure and resilient remote access to the Trust’s information systems. 3.2. To preserve the integrity, availability and confidentiality of the Trust’s information and information systems. 3.3. To manage the risk of serious financial loss, loss of client confidence or other serious business impact which may result from a failure in security. 3.4. To comply with all relevant regulatory and legislative requirements (including data protection laws) and to ensure that the Trust is adequately protected under computer misuse legislation. 4. Principles In providing remote access to staff, the following high-level principles will be applied: 4.1. The IT manager [or enter appropriate officer title] will be appointed to have overall responsibility for each remote access connection to ensure that the Trust’s policy and standards are applied. 4.2. A formal risk analysis process will be conducted for each application to which remote access is granted to assess risks and identify controls needed to reduce risks to an acceptable level. 4.3. Remote users will be restricted to the minimum services and functions necessary to carry out their role. Page 2 of 5 v1.0
Image of page 2

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Model Remote Access Policy 5. Responsibilities 5.1. The Trust Board [or enter appropriate title] is ultimately responsible for ensuring that remote access by staff is managed securely. 5.2. The Information Technology ISO17799 group [or enter appropriate title] will maintain policy, standards and procedures for remote access to ensure that risks are identified and appropriate controls implemented to reduce those risks. 5.3. The IT Manager [or enter appropriate officer title] is responsible for providing clear authorisation for all remote access users and the level of access provided. 5.4. The Information Governance Group is responsible for confirming whether remote access to business applications and systems is permitted. 5.5. The Network Manager [or enter appropriate officer title] will ensure that user profiles and logical access controls are implemented in accordance with agreed access levels. 5.6. The Information Management & Technology Security Officer (IM&TSO) [or enter appropriate officer title] will provide assistance on implementing controls.
Image of page 3
Image of page 4
This is the end of the preview. Sign up to access the rest of the document.

{[ snackBarMessage ]}

What students are saying

  • Left Quote Icon

    As a current student on this bumpy collegiate pathway, I stumbled upon Course Hero, where I can find study resources for nearly all my courses, get online help from tutors 24/7, and even share my old projects, papers, and lecture notes with other students.

    Student Picture

    Kiran Temple University Fox School of Business ‘17, Course Hero Intern

  • Left Quote Icon

    I cannot even describe how much Course Hero helped me this summer. It’s truly become something I can always rely on and help me. In the end, I was not only able to survive summer classes, but I was able to thrive thanks to Course Hero.

    Student Picture

    Dana University of Pennsylvania ‘17, Course Hero Intern

  • Left Quote Icon

    The ability to access any university’s resources through Course Hero proved invaluable in my case. I was behind on Tulane coursework and actually used UCLA’s materials to help me move forward and get everything together on time.

    Student Picture

    Jill Tulane University ‘16, Course Hero Intern