www.elpasotexas.gov - Administrative/ Special Access Policy


Administrative/ Special Access Policy

INFORMATION TECHNOLOGY

Mission Statement

GIS Division

Division Home
PDN Mapa

Project Office Division

Policies

Administrative
Departmental

Introduction	Technical support staff, security administrators, system administrators and others may have special access account privilege requirements compared to typical or everyday users. The fact that these administrative and special access accounts have a higher level of access means that granting, controlling and monitoring these accounts is extremely important to an overall security program.
Purpose	The purpose of The City Of El Paso Administrative/Special Access Practice Standard is to establish the rules for the creation, use, monitoring, control and removal of accounts with special access privilege.
Audience	The City Of El Paso Administrative/Special Access Practice Standard applies equally to all individuals that have, or may require, special access privilege to any The City Of El Paso Information Resources.
Administrative/ Special Access Policy	The City Of El Paso departments will submit to IS a list of administrative contacts for their systems that are connected to The City Of El Paso network. All users will sign The City Of El Paso Information Resources Security Acknowledgement and Nondisclosure Agreement before access is given to an account. All users of Administrative/Special access accounts will have account management instructions, documentation, training, and authorization. Each individual that uses Administrative/Special access accounts will refrain from abuse of privilege and will only do investigations under the direction of the ISO. Each account used for administrative/special access will meet The City Of El Paso Password Policy. The password for a shared administrator/special access account will change when an individual with the password leaves the department or The City Of El Paso, or upon a change in the vendor personnel assigned to The City Of El Paso contract. In the case where a system has only one administrator there will be a password escrow procedure in place so that someone other than the administrator can gain access to the administrator account in an emergency situation. When Special Access accounts are needed for Internal or External Audit, software development, software installation, or other defined need, they: Will be authorized Will be created with a specific expiration date Will be removed when work is complete
Disciplinary Actions	Violation of this policy may result in disciplinary action, which may include termination for employees and temporaries; a termination of employment relations in the case of contractors or consultants; dismissal for interns and volunteers; or suspension or expulsion in the case of a student. Additionally, individuals are subject to loss of The City Of El Paso Information Resources access privileges, civil, and criminal prosecution.

| Disclaimer | Accessibility | Privacy Policy | Security Policy | Link Policy |
| Tools | Contact Us | Directions to City Hall | Employees | © 2008 City of El Paso | Webmail |