Report on the percentage of computer user accounts closed that had been assigned to personnel who have left the organization or who no longer have a need for access.

UCF ID: 02090
Control Type: Actionable Reports or measurements
Status: Live
Metric guidance

Calculation: The calculation for this metric is # of computer user accounts assigned to personnel who have left the organization or no longer have need for access that have been closed / # of user accounts.

Calculation source: No authority document source of information exists. The following formula was used: the number of user accounts that have been closed because the user left the organization or no longer needs access to the system in accordance with policies, standards, and procedures divided by the number of user accounts for each business unit (or the organization as a whole) .

The Common Control IDs associated with this metric are as follows:

Supporting and supported controls

This control directly supports:

There are no supporting controls.

Authority documents complied with:

CISWG Information Security Program Elements, January 10,2005, ISPE19.2

US Federal Security Guidance

The organization must measure and report on the percentage of computer user accounts assigned to personnel who have left the organization or no longer have need for access that have been closed. Computer accounts include user accounts as well as system, group, application, or super user accounts. [ISPE19.2, CISWG Information Security Program Elements, January 10,2005]


Copyright 2005-2009 Unified Compliance Framework™. All rights reserved.


Site and content © Copyright 2003-2009 Network Frontiers, LLC. All rights reserved.