Ending an employment relationship with an individual can be a difficult and complex process. This is where an employee termination checklist can be helpful.

A¬†general termination checklist may not cover the crucial steps your IT department should take to ensure¬†your¬†company’s security. The last thing you want after an employee’s termination is unauthorized access to or use of company property. Our involuntary termination checklist for IT will help you ensure¬†your company’s security after an employee is let go.

Steps to Ensure Security After an Employee Termination

Follow this employee exit checklist to keep your organization secure:

1. Retrieve and Disable Company-Owned Devices

Before the employee’s last day, retrieve and disable any company devices they were using. An employee may be using a company car, cellphone, keys, credit card, or computer that you will want to collect and make inaccessible. Any phones, tablets, or computers should also be erased within the IT department so another employee can use them.

2. Disable Access to Internal User Accounts

After an employee leaves the company, they shouldn’t be able to¬†use¬†any company property.¬†One way you can prevent unauthorized access is to remove the employee’s credentials for the company’s computer network and databases.¬†This process should prohibit them from receiving¬†messages from co-workers, calls from clients,¬†and¬†company updates. Consider each of the following areas:

  • Prevent entry into the building:¬†Whether they enter with a badge, code, or key, unauthorized entry should be prevented as soon as the employee is terminated.
  • Change shared passwords:¬†If you use shared passwords, be sure to change these after an employee is terminated and turn off the employee’s access to any third-party services that use these shared passwords, like Dropbox.
  • Disable phone and voicemail:¬†If your employee has a company phone, they may be using apps for phone calls and voicemail, like Zoom. If this applies to your company, be sure to disable¬†the¬†accounts¬†that use these apps.
  • Back up the¬†employee’s hard drive:¬†You should perform a total backup of the employee’s hard drive if the data isn’t already¬†archived, saved in the cloud, or regularly backed up according to company routine.
  • Terminate VPN and remote desktop:¬†Though it may seem obvious, a VPN and remote desktop access can be overlooked during an employee’s termination. VPN configurations are often large and complex, so it can be easy to leave some VPN pathways open. A former employee could use these VPN pathways¬†as a door into¬†the network, so you want to be thorough to prevent this.
  • Disable¬†their¬†company email and instant messaging¬†platform:¬†After an employee is terminated, disable their¬†connection¬†to any instant messaging¬†platform or email accounts¬†provided by the company, including applications like Microsoft Teams or Slack. You should also forward the employee’s remaining mail to another person at the company.
See also  Turning Challenges into Change: Financial Services CTOs IT and Cyber Perspective for 2024

3. Keep Records

Ensure your organization is complying with any applicable recordkeeping requirements according to federal, state, or local laws and regulations.

When keeping records, you should:

  • Use a secure system:¬†To keep your records secure, use a¬†system that¬†separates files and maintains confidentiality.¬†This system can also utilize cloud storage, have backup files, and keep information safe from any business disruptions (like extreme weather or natural disasters).
  • Retain different formats confidentially:¬†No matter where records are stored, strict confidentiality should be maintained for both electronic and paper documents. Keeping employee records is essential in the event of a lawsuit, as performance evaluations and records of disciplinary actions can provide necessary evidence and documentation.

Keeping employee records is essential in the event of a lawsuit. Personnel files like performance evaluations and records of disciplinary actions can provide necessary evidence and documentation.

4. Audit Accounts

As soon as the employee is terminated, audit their individual accounts to identify any potential confidentiality threats or breaches.¬†Examine their hardware¬†‚ÄĒ¬†including computers and any physical storage devices like thumb drives¬†‚ÄĒ¬†to make sure they haven’t made any moves to take data with them. Signs of suspicious activity can include:

  • Bulk copying of files
  • Connecting a new mobile device
  • Using unauthorized networks or VPNs
  • Installation or attempted installation of unrecognized software
  • Attempts to access restricted data

After auditing, wipe the employee’s drives and verify that their cloud-based accounts are completely shut down.

5. Inform Other Employees to Prevent Sharing of Company Assets

Though you don’t need to broadcast an employee’s exit from the company, other employees need to know so they don’t share company assets. Your HR representative or department should be involved in this process and prepare¬†employee termination documentation. The HR department should be updated, and so should the employee who handles payroll.

You should also notify any co-workers so they know to stop sending confidential information to that employee. Taking such precautions is especially important with remote staff since they may not hear about an employee’s termination until later. Keeping your entire team up to date is the best way to prevent accidental data breaches.

See also  Microsoft 365 vs. Google Workspace: Making the Right Choice for Your Firm

Additionally, you’ll need to block your former employee’s access to their customers or clients once they leave. Make sure you restrict any accounts they use to communicate with clients and delete all messages. Tell their clients about their departure, then transfer each client’s information to a different employee.

6. Plan Ahead for a Breach

If a former employee has access to your company’s data or network, this could present a security threat. Regardless of how amicable the termination of employment is, every measure should be taken to prevent confidential information from being compromised. Put measures in place ahead of time to prevent a breach from occurring.

Contact Agio for Your IT Management Needs

IT plays an integral role in the¬†employee offboarding checklist. At Agio, we are a hybrid cybersecurity and managed IT organization. We equip financial services with next-generation technology support and cyber protection. Across the alternative investment space, Agio has extensive experience building, maintaining, optimizing, and securing IT infrastructure for the world’s most prestigious hedge fund, private equity, and asset management firms.

Our culture prioritizes frequent and timely communication to provide unrivaled, highly personalized service across all our solutions, including managed detection and response, 360-degree cybersecurity programs, virtual CISO (vCISO) support, technology hosting, monitoring, management, global service desk, desktop as a service, disaster prevention, and recovery. Contact us today for your IT management needs.