Re: Confidentiality agreements and IT staff

[Bob Bayn <bob.bayn () USU EDU>]

Everybody signs our confidentiality agreement when hired except us old timers who all signed when the agreement was 
established.  Just once, it stays in our old fashioned paper employee file.

Bob Bayn          (435)797-2396            IT Security Team
       http://it.usu.edu/security/htm/dont-be-fooled
Office of Information Technology, Utah State University

________________________________________
From: The EDUCAUSE Security Constituent Group Listserv [SECURITY () LISTSERV EDUCAUSE EDU] on behalf of David Seidl 
[dseidl () ND EDU]
Sent: Thursday, March 29, 2012 7:18 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Confidentiality agreements and IT staff

Folks,

I'm curious if you currently require all or most of your IT staff to sign a confidentiality agreement at hire on a 
recurring basis, and if so, what your reasons for doing so are.

We've had one in place for new hires for years, and our business staff has asked if we can dispense with it as a 
general requirement for all IT staff. I've done a bit of review, and can't find a direct requirement to point to for 
people who don't have direct compliance related assignments.

Thanks in advance for your feedback and comments!

David

David Seidl, CISSP, GCIH, GPEN
Director of Information Security
Office of Information Technologies
University of Notre Dame
Notre Dame, IN 46556
(574) 631-7305
dseidl () nd edu