Business Owner’s Guide to CMMC
Ep 12: Personnel Security
Watch episode 12 of our Business Owner’s Guide to CMMC series with Ben Scully (Avatara) and Dan Langley (Lupa Advisors), or read the transcript below. Stay tuned weekly for new episodes containing actionable insights and an overview of each CMMC domain.
Video Transcript:
BEN: Personnel security, I just think about this as real simple, you know, what do we do with our people on the way in and what are we doing with them on the way out.
DAN: Yeah and I kind of add to that, I’d say it’s when you employ somebody, is there a background check? Have you done the right thing security-wise so you know who actually is coming through that door? It also dives into a little bit of a role-based authentication, as far as, this person is going to have a role within my organization. What am I doing control-wise to make sure he has access to the right information? And then on the back end, how long does their email still exist? Have we gone through and taken whatever keys, authorization, badges? All that control around the physical aspect of the individual.
BEN: Right. Just making sure that you know who you’re giving that access to on the way in. And when they leave, making sure you’ve done everything to take that access away once they’re no longer employed.
DAN: Exactly.
Next Episode
Watch Episode 13 on Physical Protection.
Need help getting compliant?
Avatara’s DoD Platform is a turnkey solution for centralized data and easier compliance. Schedule a free consultation today to learn more.
