L
LesPiles
Hello,
We're a small business supporting C-TPAT.
C-TPAT's requirements has a section regarding Information Technology Security.
This week, I've reinforced a requirement that is also an internal policy : all computers must be locked when unattended. We already know that this requirement is of particular importance for Purchasing dpt., Receiving / Shipping dpts, and Payables. We can also gain from this from an internal point of view in protecting our R&D and Engineering.
My problem is I received an email from Production foreman asking the question if computers used on the production floor (the "brains" of automated machines) should also be locked.
Interesting question. Note that we're not ITAR or requested to follow high level of security. We're not manufacturing missiles !!!
What do you think my answer should be ? I've said to them it's an interesting question and proposed that THEY find the solution.
My opinion is that I could live without but it is surely a best practice to implement. I doubt however that we have to go as far as locking computers used on the production floor, specially if we're at a low level of risk by the nature of the product.
What do you think ? I would be interested to know of you're managed this issue in your plants, specially it you're C-TPAT validated.
Thank you in advance to all that will help !
PS : I'm so gratefull that Elsmar.com is alive again ! Thanks to God !
LesPiles
We're a small business supporting C-TPAT.
C-TPAT's requirements has a section regarding Information Technology Security.
This week, I've reinforced a requirement that is also an internal policy : all computers must be locked when unattended. We already know that this requirement is of particular importance for Purchasing dpt., Receiving / Shipping dpts, and Payables. We can also gain from this from an internal point of view in protecting our R&D and Engineering.
My problem is I received an email from Production foreman asking the question if computers used on the production floor (the "brains" of automated machines) should also be locked.
Interesting question. Note that we're not ITAR or requested to follow high level of security. We're not manufacturing missiles !!!
What do you think my answer should be ? I've said to them it's an interesting question and proposed that THEY find the solution.
My opinion is that I could live without but it is surely a best practice to implement. I doubt however that we have to go as far as locking computers used on the production floor, specially if we're at a low level of risk by the nature of the product.
What do you think ? I would be interested to know of you're managed this issue in your plants, specially it you're C-TPAT validated.
Thank you in advance to all that will help !
PS : I'm so gratefull that Elsmar.com is alive again ! Thanks to God !
LesPiles