Jonathan van Driessen
- Total activity 140
- Last activity
- Member since
- Following 0 users
- Followed by 0 users
- Votes 0
- Subscriptions 3
Articles
Recent activity by Jonathan van Driessen-
Do you allow multiple employees to use the same login?
No, each employee has their own login.
-
Do you use generic accounts to access the servers and applications for administrator purposes?
No, each administrator has their own account.
-
Do you allow remote access?
Remote access to the DESelect servers is possible through SSH only. For all other software used internally, 2-factor authentication is required.
-
Do you have a written password management policy?
Please refer to our Strong Password Policy here: https://drive.google.com/file/d/1wM3RANLY1137tgJdoDtwUqYzoFM230Pf/view?usp=sharing.
-
Are you disabling access rights immediately after the end of employment?
Yes, we have internal checklists for this.
-
Do you have a written policy for user changes (joiners, movers, leavers) to be handled?
Yes, we have internal checklists for this.
-
Do you have controls in place ensuring timely removal of systems access that is no longer required for business purposes?
Yes, we do.
-
Are controls in place to prevent unauthorized access to tenant application, program, or object source code, and assure it is restricted to authorized personnel only?
Yes.
-
Do you require a periodical authorization and validation (e.g. at least annually) of the entitlements for all system users and administrators (exclusive of users maintained by your tenants), based on the rule of least privilege?
Yes, we do.
-
Is physical and logical user access to audit logs restricted to authorized personnel?
Yes.