The document discusses the need for organizations to implement and monitor an Acceptable Use Policy (AUP) to govern employee use of company technology and infrastructure. An effective AUP balances productivity, security, compliance with regulations, and legal issues. It also discusses managing employee behavior with tools like monitoring internet use, images, USB devices, and training to ensure compliance with the AUP and address risks. The e-safe business solution helps reconcile the AUP with regulatory requirements like Lexcel and SRA, providing automated monitoring, management and reporting to address compliance issues.
1. Acceptable Use PoliciesBalancing Productivity and Compliance “Employees expect personal internet access at work. This raises security, productivity, HR, compliance, bandwidth and legal issues which cross multiple departmental boundaries” “Organizationsneed to create, implement and monitor an Acceptable Use Policy (AUP) which governs the use of company infrastructure and which is backed up by both effective tools, regular monitoring and comprehensive training” “This presentation discusses some of the background issues that affect the management of a balanced AUP which employees understand and works with Risk Based Regulation” Knowledgeframe e-safe business
2. Acceptable Use PoliciesBalancing Productivity and Compliance As society becomes increasingly connected so professional service firms have to adapt to, and take advantage of, the business benefits of online communication, connectivity and collaboration. Email VOIP Professional Services Firm Mobile Phone Web Conferencing Instant Messaging Social Networking
3. Acceptable Use PoliciesBalancing Productivity and Compliance Clients are more demanding This change is accelerating, its scope is broadening and its impact is global. Regulatory pressures are escalating Competition is fierce and recruitment is increasingly difficult
4. Society is hooked on all-pervasive, always-on connectivity. The boundaries between work, social and leisure time are becoming nonexistent. Internet Mobile Phone Web Conferencing VOIP Social Networking I.M. PDAs E-mail
5. The Organization Productivity For most of us, not having online access would severely impact our productivity. For a growing percentage, full time, instant, multi-device connectivity is mission critical. Connectedness Connectedness provides a huge competitive advantage particularly if governed by an ITC Acceptable Use Policy which is integrated into its business vision and strategy.
6. The Organization Demographics At the same time workplace demographics are changing Existing staff members are being replaced by a new generation of knowledge workers Connectedness They have never known a world without the internet, Google, Facebook, YouTube, text messaging and camera phones, they are naturally collaborative and connected.
8. The Organization Demographics In order to compete for this valuable talent base every organization has to offer an always on, connected, collaborative environment At the same time workplace demographics are changing Connectedness It has to support the way in which the “everyone, everything, everywhere, connected” generation, live and work.
9. VOIP Web Conferencing Text Messaging In today's environment workers use social networking sites and online communities for business communications 60% 60% use social networking sites at work 5% 10% 25% Whilst no one doubts that connectivity, communication and collaboration tools dramatically increase knowledge worker productivity there is the realisation that these same tools increase business risks for the employer.
10. These changes will have a profound effect not only will you have to understand and manage these new connectivity tools but also: Manage the behaviour of users
11. These changes will have a profound effect on firms, not only will they have to understand and manage these new connectivity tools but they will have to: Manage the behaviour of users balance security and network reliability
12. These changes will have a profound effect on firms, not only will they have to understand and manage these new connectivity tools but they will have to: Manage the behaviour of users Maintain employee productivity and safety balance security and network reliability
13. These changes will have a profound effect on firms, not only will they have to understand and manage these new connectivity tools but they will have to: Manage the behaviour of users Ensure compliance with regulatory rules and guidelines. Maintain employee productivity and safety balance security and network reliability
14.
15. “Organizationsneed to develop a strategy, driven by the business needs of the practice which balances increased regulation, enhanced security and improved productivity with the social and work needs of permanently connected employees.”
16. Both Lexcel V4 and Risk Based Regulation from the SRA impose additional monitoring and reporting burdens on law firms. Lexcel V4 SRA
17. Both Lexcel V4 and Risk Based Regulation from the SRA impose additional monitoring and reporting burdens on law firms. Lexcel V4 Regulatory Burden SRA
18. Both internal governance and exterior regulation impose additional monitoring and reporting burdens . Internal Regulatory Cost Regulatory Burden Regulation in particular appears to be moving away from the “yearly snapshot” approach to a continuous monitoring model with a form of credit scoring applied in real time. External
19. This impacts costs and possibly even ability to attract clients and recruit talent. There is, therefore, a direct link between a clearly written Acceptable Use Policy, continuous compliance monitoring and profit.
20. Being compliant is a business imperative. However monitoring and managing ongoing compliance together with reporting to regulators has the potential to take up valuable management time. e-safe business reconciles Acceptable Use with Lexcel V4 and Risk Based Regulation to provide a largely automated monitoring, managing and reporting environment which addresses the issues facing growing law firms adapting to the new regulatory environment.
28. Risk Based Regulatione-safe business reconciles the Acceptable Use Policy with Risk Based Regulation to provide a largely automated monitoring, managing and reporting environment which addresses the issues faced in addressing the ever expanding regulatory environment.
31. Regulatory RisksLexcel V4 4A.4 e-mail policy 4A-5 website use 4A.6 internet use AUP E-safe Monitoring & Reporting There is overlap between Lexcel, LSC and SRA rules and guidelines. e-safe business from eSafe Systems
36. Risk Based RegulationLexcel V4 4A.4 e-mail policy 4A-5 website use 4A.6 internet use AUP E-safe Monitoring & Reporting SRA Rule 5.01(1)g Rule 5.01(1)h Rule 5.01(1)i There is overlap between Lexcel, LSC and SRA rules and guidelines. The Acceptable Use Policy and e-safe business, work together to manage this relationship. e-safe business from eSafe Systems
65. mobile phones whenever an attempt is made to connect them to the network helping to prevent data theft and the introduction of viruses, worms and Trojans.
66. e-safe business improves productivity, reduces risk and improves security by modifying user behaviour. Training – Deploying e-safe is not, in itself, sufficient to provide the level of control or changes in behaviour necessary to ensure your AUP is adhered to and ongoing regulatory compliance maintained and improved. It’s important that everyone in the organisation understands the reasons why e-safe business has been deployed and how non compliance with rules impacts reputation, costs and profit. e-safe provides comprehensive training showing how to introduce e-safe business and configure it to provide the level of protection you need.
67. e-safe business can be installed onto your network Or provided as a managed service from our UK based servers with fully qualified and accredited support