GV.RR-04.047

Does your organization conduct background checks for personnel in sensitive roles both during initial onboarding and periodically throughout their employment?

Explanation

Background checks help identify potential security risks by verifying an individual's identity, criminal history, education, employment history, and other relevant information before granting access to sensitive systems or data. Periodic re-screening is important as people's circumstances change over time, potentially introducing new risks that weren't present during initial hiring. Evidence of compliance could include a documented background check policy specifying which roles require screening, the scope and frequency of checks, and a sample of redacted background check reports or a summary report from your HR department showing completion dates for initial and periodic checks (with personal information removed).

Implementation Example

Conduct background checks prior to onboarding new personnel for sensitive roles, and periodically repeat background checks for personnel with such roles

ID: GV.RR-04.047

Context

Function
GV: GOVERN
Category
GV.RR: Roles, Responsibilities, and Authorities
Sub-Category
Cybersecurity is included in human resources practices

ResponseHub is the product I wish I had when I was a CTO

Previously I was co-founder and CTO of Progression, a VC backed HR-tech startup used by some of the biggest names in tech.

As our sales grew, security questionnaires quickly became one of my biggest pain-points. They were confusing, hard to delegate and arrived like London busses - 3 at a time!

I'm building ResponseHub so that other teams don't have to go through this. Leave the security questionnaires to us so you can get back to closing deals, shipping product and building your team.

Signature
Neil Cameron
Founder, ResponseHub
Neil Cameron