Versions Compared

Old Version 11

changes.mady.by.user Douglas Fein

Saved on

compared with

New Version Current

changes.mady.by.user Douglas Fein

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Panel

Document Name: NCSA CUI Access Control Standard
Version: 1.2
Accountable: James Eyrich
Authors: Margaret Johnson, Douglas Fein

Reviewed: Dec 8, 2023
Approved: Dec 1614, 2021 2023 by IIB

Table of Contents

Purpose

...

  1. Staff member submits request for access with the stated reason for the request. This request contains the requested access group name. 
  2. Staff member's manager approves or rejects the request.
  3. Approved request proceeds to the CISO who HIPAA Liaison who considers the staff member's role and reason for the request.
  4. The HIPAA Liaison verifies that the person has taken approved CUI training.
  5. User verifies device encryption
    1. NCSA employees must use the WorkspaceOne tool to have their machine encryption verified
    2. Other users will provide a screen shot of their encryption and attest to the continued use of encryption for connection to Nightingale.
  6. If approved and they are in the NCSA Staff with ACHE Access group, they are added to the requested group(s).
  7. Emails are sent to the staff member, their manager and the HIPAA Liaison.

...