Logical Security & Access Control Clause Samples

Logical Security & Access Control. Application System Level: a) System provides for unique user IDs and password for all users. b) System provides for different levels of access. c) System prompts for change of user password after lapse of specified period. d) System ensures secrecy and security of the user passwords and the access rights granted to users. e) Unrestricted access to the entire application system menus is provided only to a Super User. f) Application makes use of all the security features available at the Application System level. g) Super User access in application level is not given to staff who is under notice period, retiring shortly, under disciplinary action etc. h) The application system user list is periodically reviewed. i) The access privileges granted in the system are in accordance with the designation/duties performed. j) None of the staff members has multiple level or duplicate access ID in the system. k) Allocation of the suspended, disabled user ID to new users is avoided. l) Active user IDs of the transferred, retired, suspended or dismissed employees are not present in the system. m) There is no dummy user ID created in the system. n) The user ID of staff on long leave, training etc. is suspended.