Educause Security Discussion mailing list archives

Re: Retiree Email Accounts

From: "Miller, Richard H" <rick () BCM EDU>
Date: Fri, 7 Sep 2018 20:40:54 +0000

Emeriti still have to have an active faculty appointment which are reviewed/renewed on an annual basis by Faculty 
Affairs. Other than that we depend on HR to
be responsible for maintaining the record in an active state. When they (or the departmental HR person) terminates the 
personnel record
their access is disabled.

Rick


From: The EDUCAUSE Security Constituent Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU> On Behalf Of Frank Barton
Sent: Thursday, September 6, 2018 7:38 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Retiree Email Accounts

For those of you that allow emeritus faculty members to maintain their accounts: How often do you "audit" the accounts 
to make sure that they are still active, the owner isn't deceased, the owner is still in good standing to maintain the 
account, etc? and what department on campus "owns" the relationship with the emeritus faculty member? (Who do you 
expect to tell you when the account should be closed?)

Thank You
Frank

On Thu, Sep 6, 2018 at 8:30 AM Scott Stoops <sstoops () ashland edu<mailto:sstoops () ashland edu>> wrote:
We take the same view. Retirees are a termination and lose access to there accounts. We will allow an emeritus faculty 
member to retain their accounts but they have to get approval first.
--------------------------------------------------------------------------------------------------
Scott Stoops
Security Analyst II
Office of Information Technology | 100 Patterson Technology Center
Ashland, OH 44805
(w) 419-289-5405
sstoops () ashland edu<mailto:sstoops () ashland edu>



On Wed, Sep 5, 2018 at 5:32 PM Ronald King <ronald.king () morgan edu<mailto:ronald.king () morgan edu>> wrote:
Disable within 24 hours with the exception of Emeriti as well. Similar reasons as stated above.

Ron
Ronald A. King, CISSP
Chief Information Security Officer
Morgan State University Office: (443) 885-3372
1700 E. Cold Spring Ln. Email: ronald.king () morgan edu<mailto:ronald.king () morgan edu>
Baltimore, MD 21251 URL: 
http://www.morgan.edu<https://urldefense.proofpoint.com/v2/url?u=http-3A__www.morgan.edu&d=DwMFaQ&c=ZQs-KZ8oxEw0p81sqgiaRA&r=2OsE44buE5NKkGGctYIwOw&m=FHCMaLrAgMZmK8kNa7-vwNrSXcLjrU52M_Tf-hJ7gE8&s=dqOC8yf_NDe8mU6bfyFb_EhDMkQYKyJU_gKsGWBUUJg&e=>

Growing the future ... Leading the 
world<https://urldefense.proofpoint.com/v2/url?u=http-3A__www.morgan.edu_Documents_ABOUT_StrategicPlan_StrategicPlan2011-2D21-5FFinal.pdf&d=DwMFaQ&c=ZQs-KZ8oxEw0p81sqgiaRA&r=2OsE44buE5NKkGGctYIwOw&m=FHCMaLrAgMZmK8kNa7-vwNrSXcLjrU52M_Tf-hJ7gE8&s=UOHOJNRtkc1ZZLQ-h724PQlkHibpOtKSBQVD-7OfW9k&e=>



On Wed, Aug 29, 2018 at 4:40 PM Theresa Rowe <rowe () oakland edu<mailto:rowe () oakland edu>> wrote:
Yes we have that same very limited exception for emeritus standing.

Theresa Rowe

On Wed, Aug 29, 2018 at 3:36 PM Miller, Richard H <rick () bcm edu<mailto:rick () bcm edu>> wrote:
BCM considers retirement to be a form of termination. Per our policy, e-mail along with all other is deactivated upon 
the date of retirement. The
exception is emeritus status for a faculty member. An emeritus is considered to still be active so access is not 
terminated


Richard H. Miller, CISSP, IEEE(SM)
Network Security Architect
IT-Network Engineering & Security, Baylor College of Medicine
Need Help?  l  Have a Question?  l  Provide Feedback?  l  Visit the IT Service Portal @ 
https://it.bcm.edu<https://urldefense.proofpoint.com/v2/url?u=https-3A__it.bcm.edu_&d=DwMFaQ&c=0CCt47_3RbNABITTvFzZbA&r=hF9utfnfkGfY793x81M4Gr0nwxs9KYTZ6TUPUh4wPjs&m=VHGhfYTh8VaY86rLzoCLLTe0fHQs96GPZlQ0IvI1d1U&s=RDAdvYum_MpudFEYI-7sBkdhGu7hayjW5x4SiuI1lcU&e=>




From: The EDUCAUSE Security Constituent Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV 
EDUCAUSE EDU>> On Behalf Of Williams, David
Sent: Wednesday, August 29, 2018 12:18 PM
To: SECURITY () LISTSERV EDUCAUSE EDU<mailto:SECURITY () LISTSERV EDUCAUSE EDU>
Subject: [SECURITY] Retiree Email Accounts

***CAUTION:*** This email is not from a BCM Source. Only click links or open attachments you know are safe.
________________________________

How does your institution address email accounts for retirees?

•         Deactivate upon termination?

•         Continuous use of email account?

•         Move email account to  separate domain (e.g., John.Doe () retiree dcccd edu<mailto:John.Doe () retiree dcccd 
edu>)?  What about retention of email upon retirement?

•         Other?

Retirees at our institution are allowed to maintain their email accounts.  I have given good cause for removing this 
entitlement from a security exposure and support perspective, but, have been requested to solicit comments from other 
education institutions.

Thank you for any feedback!

--
Theresa Rowe on the road


--
Frank Barton, MBA
Security+, ACMT, MCP
IT Systems Administrator
Husson University

Current thread:

Re: Retiree Email Accounts, (continued)
- Re: Retiree Email Accounts Jackson, William (Aug 29)
  - Re: Retiree Email Accounts Dan Wasson (Aug 29)
    - Re: Retiree Email Accounts Gael Frouin (Aug 29)
- Re: Retiree Email Accounts Gregg, Christopher S. (Aug 29)
- Re: Retiree Email Accounts Miller, Richard H (Aug 29)
  - Re: Retiree Email Accounts Theresa Rowe (Aug 29)
    - Re: Retiree Email Accounts Ronald King (Sep 05)
    - Re: Retiree Email Accounts Scott Stoops (Sep 06)
    - Re: Retiree Email Accounts Frank Barton (Sep 06)
    - Re: Retiree Email Accounts Theresa Rowe (Sep 06)
    - Re: Retiree Email Accounts Miller, Richard H (Sep 07)
    - Re: Retiree Email Accounts Tom Klimek (Sep 06)
    - Re: Retiree Email Accounts Walter Moore (Sep 06)
- Re: Retiree Email Accounts Steve Niedzwiecki (Sep 07)
- Re: Retiree Email Accounts Graves, Rich (Sep 06)