Re: Systems Access Policy

[Frank Cafasso <frank.cafasso () WAGNER EDU>]

Honestly, I don’t know. Usually the employee separation process kicks in
and an end date is given to us. We don’t disable the account over the
summer if they aren’t leaving, but officially they are only paid for 10
months. I would guess the contract date comes in to play when they are
asked to do something extra over the summer and they want to get additional
pay for it.

*Frank Cafasso | Chief Information Officer *
Office of Information Technology <http://wagner.edu/it>
wagner.edu | 718.420.4220

Connect with Wagner College IT! <http://twitter.com/WagnerCollegeIT>


On Mar 27, 2018 at 11:08 AM, Frank Barton <bartonf () husson edu> wrote:


+1, Like, <aol>me too</aol>, "this", etc...

often times the problem comes from knowing when people leave, and when
their access needs to end. to Expand on Frank Cafasso's comment, what
exactly does "end of the Spring semester" count as? is it commencement? a
week past commencement? day that final grades are due? What about if they
have students that had an incomplete? there are many scenarios that can
complicate matters

Frank

On Tue, Mar 27, 2018 at 10:08 AM, Tim Faircloth <Tim.Faircloth () gsw edu>
wrote:

> I’d like to expand upon Frank’s comments by saying that the risk of giving
> a new hire early access to systems is significantly less than the risk of a
> former employee retaining access to said systems.
>
>
>
> In other words, I think it’s more important to worry about timely **de*
> *provisioning.
>
>
>
> /tim
>
> --
>
> Tim Faircloth
>
> System Administrator, GSW IIT
>
> 229-931-5076 <(229)%20931-5076>
>
>
>
> *From:* The EDUCAUSE Security Constituent Group Listserv [mailto:
> SECURITY () LISTSERV EDUCAUSE EDU] *On Behalf Of *Frank Barton
> *Sent:* Tuesday, March 27, 2018 9:56 AM
> *To:* SECURITY () LISTSERV EDUCAUSE EDU
> *Subject:* Re: [SECURITY] Systems Access Policy
>
>
>
> Michael, I think I may be reading too much between the lines here, so feel
> free to correct me.
>
>
>
> The first thing I am noticing is a disconnect between "Hire Date", "Start
> Date", and "First Day of Classes", and that would be a conversation to have
> with your HR department. long-story short, if their start-date is the first
> day of classes, that gives them NO time to set up classes, and to get
> started, and I don't think it serves your students well.
>
>
>
> The second thing is that, yes, we set up faculty (and staff) accounts as
> soon as we are notified by HR that there is a new hire, and that they have
> passed all of the necessary hurdles (background checks, etc.) This also
> then creates email, LMS accounts, etc. I would make the argument that this
> is a net benefit as it then also allows any discussions to move into the
> institutional email system. This also gives us time to make sure that all
> of the needed permissions are in place so that they have access to
> everything that they need when the land. (account provisioning is not
> instantaneous after all)
>
>
>
> I guess, I would ask you what risks you do see, and what problems have you
> seen? obviously, I am not a lawyer, and at the end of the day your general
> counsel may have the final say as to when accounts get created and
> activated.
>
>
>
> Frank
>
>
>
> On Tue, Mar 27, 2018 at 9:30 AM, Madl, Michael <michael.madl () indwes edu>
> wrote:
>
> Good morning,
>
>
>
> Do your respective universities allow faculty new hires access to systems
> prior to their hire date for the purposes of building LMS course shells in
> preparation for their classes?
>
>
>
> I understand why some institutions may do this ‘but’ I do see inherit
> risks with setting up accounts prior to official start dates.  Accounts can
> be set up with limited access to start then further loosened after the
> start date but that creates double work and more of an administrative
> nightmare.
>
>
>
> If you could elaborate on any experiences, polices or thoughts around this
> I would greatly appreciate it.
>
>
>
> Thanks in advance!
>
>
>
>
>
> --
>
> Frank Barton
>
> Security+, ACMT, MCP
>
> IT Systems Administrator
>
> Husson University




-- 
Frank Barton
Security+, ACMT, MCP
IT Systems Administrator
Husson University