Computing Policy
Overview
Allowing employees to install software on company computing devices is a risk which needs to be managed. Risks include dependency conflicts which prevent programs from running, the introduction of malware and the use of unlicensed software.
Purpose
To outline the requirements around installation software on company owned computing devices and to minimise the risk of loss of program functionality, the exposure of sensitive information contained within Opus Works’ computing network, the risk of introducing malware, and the legal exposure of running unlicensed software.
Scope
This policy applies to all Opus Works employees, contractors, vendors and agents with an Opus Works-owned device. This policy covers all computers, servers, smartphones, tablets and other computing devices operating within Opus Works.
Policy
- Employees may install software on computing devices operated within the Opus Works network in order to perform their role / function.
- All software must be appropriately licensed either by Opus Works or by the user.
- All users must take every measure to ensure that they do not inject malware onto Opus Works systems and networks.
- The Administration Team will obtain and track licenses owned by Opus Works.
- Opus Works computational devices may be audited at any time.
Policy Compliance
Compliance Measurement
The ISMS Committee will verify compliance to this policy through various methods, including but not limited to, periodic walkthroughs, video monitoring, business tool reports, internal and external audits, and feedback to the policy owner.
Exceptions
Any exception to the policy must be approved by the ISMS Committee in advance.
Non-Compliance
An employee found to have violated this policy may be subject to disciplinary action, up to and including termination of employment.
Related Standards, Policies and Processes
- Acceptable Usage Policy
- Software Asset Register
Definitions and Terms
None