Status and Details

Status and Details

This page contains information about the status, approval and implementation of this document, contact details for the relevant Manager and, on the right, a brief summary of changes between this and the previous version.
 

Information Security - User Access Management Procedure

Status Current
Effective Date 10th June 2021
Review Date 10th June 2024
Approval Authority Executive Director, IT Services
Approval Date 9th June 2021
Expiry Date Not Applicable
Responsible Officer Richard Constantine
Vice-President, Resources and Risk
+61 3 99194753
Accountable Officer Richard Constantine
Vice-President, Resources and Risk
+61 3 99194753
Enquiries Contact Jessica Carter
Coordinator Quality Assurance
+61 3 99196292

Summary of Changes from Previous Version

The User Access Management Procedure has been updated following a review and includes updates to terminology, roles and responsibilities and clauses for removing and reviewing user access privileges to VU systems and applications to align with the Information Security Policy and IT Security Standards.
The updates include the following:
• Clarify roles and responsibilities of employees, students, contractors, third-party providers and administrators under this procedure.
• Removal of employee and contractor access to VU systems and applications at the end of employment with VU.
• Changes to Administrator account management and frequency of administrator account user access reviews.
• Changes to the period of user account inactivity before the account password is to be reset.
• A new exemption to give authority to permit access to VU systems and applications outside of employment contract dates.


Clauses Amended:Procedure: All