Clean desk policy что это
За последние 3 года я привел в порядок немало macbook imac. И обратил внимание на то, что, если рабочий стол завален грудой документов, изображений, музыки и прочего, то это нередко приводит к медленной работе компьютера.
Решение нашлось достаточно давно, оно было банальным: держать пустым рабочий стол. При этом все документы хранились в папке документы или же просто были разбросаны по диску, что, согласитесь, не самое правильное решение. И вот не так давно я узнал о технике под названием CDP (CLEAN DESK POLICY) или «политика чистого стола». Лайтовый вариант я предлагаю вам взять на вооружение.
Не считаю себя педантом, но временами все-таки прибегаю к тотальной уборке, польза от этого видна сразу: меньше становится отвлекающих факторов, проще находятся нужные файлы и, возможно, крепче спится по ночам, но это не точно. Проходит пара-тройка дней-недель, и все снова приходит в запустение, так продолжалось из года в год.. Пока не наткнулся на книгу Дэвида Алена «Getting Things Done (GTD) или как привести дела в порядок» и начал применять советы в повседневной деятельности.
Как надежно скрыть по-настоящему важную информацию?
А еще CDP про безопасность, стандарт в каждой организации может быть свой, но в целом должны выполняться следующие пункты:
Ваша информация по уходу должна надежно запираться, включая сменные носители(флешка, внешний жесткий диск и т.п.);
Возможности для копирования важной информации должны присекаться;
Вы можете установить пароль; Отключить автоматический вход ( чтобы при включении ваш mac запрашивал пароль); Включаем автоматическое запирание при выходе mac из режима заставки, по умолчанию этот параметр задан 5 минутами, но можете поставить сразу; (Проходите в системные настройки, далее «Защита и безопасность» на вкладке основные выбираете нужный параметр)
Далее можете включить сквозное шифрование жесткого диска; (Заходим в системные настройки, далее Защита и безопасность, на вкладке FileVault нажимаем на замок, вводим пароль и нажимаем на клавишу включить FileVault.)
Если же вы хотите еще больше обезопасить ваши данные, рекомендую вам посмотреть в сторону Hider от компании MacPaw, их основным продуктом, с которым вы наверняка сталкивались, является CleanMyMac.
Clean desk policy. Why it matters for teleworking.
What is a “Clean Desk Policy”?
With over 90% of workers stating the desire to work remotely, the trend seems to have staying power. Proponents of remote working cite benefits not only to employees but also to businesses and the environment. However, today’s big data culture is under constant threat of security risks and data breaches. Verizon’s 2019 Data Breach Investigation Report says that over 34% of companies have reported a security breach and have suffered data loss due to breaches on remote worker’s computers or mobile phones. Hence, to achieve full security, trust, and confidentiality in an organization, a “Clean Desk Policy” is mandatory.
In a traditional brick and mortar office setup, a “Clean Desk Policy” simply means that an employee must clear his/her desk after work. This includes organizing or discarding any folders, documents, binders, files and other paraphernalia like sticky notes, business cards, and USB drives when the desk is not in use.
But, in a remote workplace, remote employees have to access and send company data and materials outside the physical borders of the company. This creates cybersecurity risks as it widens the network, and the company can easily fall prey to data theft and fraud. Here, a “Clean Desk Policy” or “Clean Desk Environment” needs a broader definition. It outlines strict guidelines and clear screen policies for remote employees to safeguard the company against security threats or malicious data breaches.
Benefits of a “Clean Desk Environment” for Teleworkers
Challenges while implementing a CDE for remote workers
According to a report by McAfee, 64% of security professionals felt data loss prevention (DLP) technology could have prevented their data exfiltration events. These risks are only bound to increase as more and more employees are shifting toward remote work and telecommuting. Let’s take a look at a few concerns that companies usually have when managing a remote workforce.
How Remotedesk saves the day
One solution to these problems is Remotedesk by Verificient. Remotedesk is the only automatic monitoring solution that securely identifies and safeguards the privacy of work-from-home agents. It deters any malicious insider breaches and delivers a “Clean Desk Environment” to facilitate and secure remote work.
Here are a few features that make it the most effective solution in the market and how it brings the most value as a remote workforce monitoring partner.
Most importantly, it empowers companies to obtain the elusive remote “Clean Desk Environment”, full transparency compliance and accountability of their work-at-home agents.
5 Benefits to Having a Clean Desk Policy
Last updated on November 16, 2021
One of the simplest ways to become compliant with basic privacy and security principles, increase productivity, and have a great-looking office is to implement a Clean Desk Policy.
A clean desk policy and a clear screen policy work hand-in-hand to safeguard your organization’s sensitive information.
What is a Clean Desk Policy?
A clean desk policy instructs that all employees must clear their desks at the end of each work day. This not only includes documents and notes, but any post-it notes, businesses cards, and removable media (e.g. USB memory sticks).
The purpose of the clean desk policy is to help your organization reduce the risk of information theft, fraud, or a security breach caused by sensitive information being left unattended and visible in plain view.
The Benefits of a Clean Desk Policy
A clean desk policy should be adopted because of the numerous benefits it can provide your organization.
1. Save Time and Money
A clean desk policy will encourage employees to use digital versions of documents, significantly reducing your organization’s costs of paper, ink toner, and printer maintenance.
2. Make Good Impressions
Who knows who and when someone will visit your office? A clean and tidy workspace makes your organization look efficient and presentable to anyone who decides to visit, including the auditors!
3. Easy ISO Compliance
A clean desk policy is not only ISO 27001/17799 compliant, it also complies with basic privacy principles.
Canada’s federal privacy legislation PIPEDA requires that Canadian organizations safeguard personal information. UK’s Data Protection Act requires organizations in the UK to ensure that personal information is kept secure.
4. Discourages Prying Eyes
Employees usually leave sensitive information on their desk.
Post-it notes are usually the worst culprit, containing names, phone numbers, and even user names and passwords visible in plain view. These habits encourage dishonest employees, cleaning crews, and maintenance staff to view information they should not have access to.
5. Reduce Stress
A place for everything and everything in its place. When your employees are organized they can spend more time concentrating on work rather than feeling stressed because they can’t find a report due in the next 10 minutes.
Implementing a Clean Desk Policy
You are convinced that your organization needs a clean desk policy. Great! Here are a few steps to help you implement a policy.
Put it in Writing
A clean desk policy should be in writing and communicated to all employees, especially during introductory and refresher training. Consequences for failure to comply should be serious yet practical, especially if your organization works with much sensitive information. Have all employees sign the document for approval.
Not sure where to start? We’ve created a free clean desk policy template for you to modify and use in your business. You can also spread the word using our free poster.
Add a Reminder to Email Signatures
You have probably seen it below many email signatures: Please consider the environment before printing this email. If your organization uses standardized email signatures, consider having this reminder added to the bottom. 
Lockable Storage
You can’t implement a clean desk policy if you have no where for employees to put their documents. Consider purchasing small, lockable storage boxes for employees that fit under their desk.
Encourage Electronic Documents
Have employees work with electronic documents whenever possible. Without the need to print and work with physical papers, your employees will always have a clear desk whenever they log out of their computers.
Get Rid of Documents Securely
Your employees should never throw any work-related documents into the waste basket. Once garbage leaves your company’s doors, it becomes public property. Nothing can ruin your organization quicker than careless employees throwing sensitive information into a waste basket. Your organization does not want to be on the front page of the newspaper for exposing sensitive information.
Implement a document destruction policy to ensure all documents are disposed of securely.
Perform Routine Backups
If you discourage employees from using physical documents, make sure your organization has a dependable backup routine in place. Employees need to know that their documents will be safe in the event of a power loss or hard-drive crash.
Enforcing a Clean Desk Policy
Implementing a clean desk policy and having a nonchalant attitude towards enforcement will render your policy useless.
Random Checks
Have someone conduct random weekly checks, possibly at the end of a work day. All papers, notes, post-its, or any other documents containing sensitive information should be shredded immediately. Removable media, such as CDs, floppy disks, or memory sticks can be confiscated temporarily. It is usually a good idea to have this responsibility with one person. In many organizations, it is the office manager that conducts these checks.
Looking for an audit checklist? See our free clean desk policy audit checklist.
Upper Management Support
A clean desk policy needs to be taken seriously — especially with all levels of management. If your employees see that upper management does not have to abide by the policy, they will soon lose faith.
The fact that upper management usually handles more sensitive documents should reinforce the need for a clean desk policy for all employees regardless of their status within the organization.
Халатное отношение к защите информации
Здравствуйте, уважаемые коллеги! Мне бы хотелось услышать мнение специалистов, как они справляются с подобной проблемой. Я давно столкнулся с тем, что самым важным фактором информационной безопасности является человеческий фактор. А именно безответственное отношение к защите информации т.е. разбрасывание ключей, пароль записан на листочке, который прикреплен к монитору и т.п. Причем персонал проинструктирован, с всех взята подпись за неразглашение и периодически проводится инструктаж. И главное не помогает наказание рублём и строгие выговоры, это всё временные меры! У кого получилось организация защиты информации на должном уровне, хотелось бы узнать.
А представьте ситуацию, уважаемые коллеги, что это не маленькая компания, а Правительство, где как минимум 100 человек пользователей и большинство не мелкие люди, которым просто так не скажешь, мол что вы паролями разбросались. И выходит, что способ, пароль должен назначаться админом и пользователем совместно, может не сработать. И второе, это то, что министры люди важные и им не столь сильно важна политика информационной безопасности. Отсюда естественно их штат тоже сильно не испугаешь, тем что они нарушают политику информационной безопасности. Хотя я согласен с тем, что если хочешь чтобы подчиненные соблюдали правила, это надо шефа как то заставить соблюдать правила. И последнее, политика чистого стола есть, только плохо соблюдается! Жду новых советов и рекомендаций!
В результате пользователь будет вынужден уходя изымать идентификатор, помнить ему надо будет только один пин, а пароли можно менять хоть каждый день. Для случая с картой на нее можно еще и пропуск завести.
Александр Т, у многих cтоит Dallas Lock и SecretNet. Так они (пользователи) умудряются оставлять на столе идентификаторы и уходить сами на обед и т.п.
Я не зря указал, что тот же идентификатор должен открывать дверь в кабинет 😉
Александр Т, а вы не подскажите, если есть такое аппаратно-программное средство, позволяющее открывать двери и входить в пользователю в компьютер.
9 Examples of Squeaky Clean Desk Policy Posters
As a HIPAA-compliant organization, you know the importance of a clean desk policy. It requires staff to keep sensitive information out of eyesight so unauthorized people don’t see it.
These policies also contribute to the overall environment of your office. Cleanliness impacts the physical and mental health, appearances, and costs of your business. With all of the benefits of this policy, your staff must follow it.
But it’s not uncommon for them to forget or not prioritize these rules. They already have a lot going on, and it won’t be on their radar if you only bring it up once a year in training.
This is why it’s necessary to always promote the policy. You want staff to see why they should follow it and take it seriously. One way to do this is by making clean desk policy posters. While this is a passive reminder, being able to visualize the effects of decluttering encourages people to do it.
But just printing out a list of all the rules and hanging it up won’t be enough to grab attention.
Instead, you can focus on the key reasons why it’s necessary to follow. Here are nine clean desk policy posters for inspiration. We even included four that you can use yourself.
