Points to remember:
- The CISA candidate should be aware of the above process – from hiring to termination. ISACA tests on the knowledge at each step – on what the enterprise should/should not do.
- The employees should be aware of the enterprise IS policy. If not, the lack of knowledge would lead to unintentional disclosure of sensitive information
- When an employee is terminated, the immediate action/most important action/first step that the enterprise should do is – disable the employee’s logical access and communicate on the termination of the employee
|