Quiz: Information Security Policy

Create a personal folder (also known as a PST or archive file)

Perform some 'housekeeping' on your email account

Contact IT for assistance

Do nothing as my department is allowed to store large amounts of data

Delete and ignore it as these type of emails can contain viruses or are a hoax

Forward it to all staff in the organisation

Send a new email to my friend and ask that they do not send me personal emails to my work email address

All of the above 

Using profanity while chatting by email to a colleague

Logging in to my bank account at lunch time

Using my work telephone or mobile to make a personal call without authorisation

Sending an email to the Sports Leaders UK mailing list telling them that there are cakes in the kitchen at Head Office

Sending an email to the Milton Keynes mailing list telling them that there are cakes in the kitchen at Head Office

The vehicle is protected by an intruder alarm system which is in full working order, which will operate in the event of interference with the vehicle

The portable equipment is concealed from view under a seat or floor mat and not visible from outside of the vehicle

The doors of the vehicle are locked and all windows of the vehicle closed

The portable equipment is concealed from view in a locked boot or covered luggage department

The Sports Leaders UK primary wireless network (SportsLeadersUK)

The Sports Leaders UK secondary wireless network (SLUK Guest)

The Microsmiths / Linford Forum wireless network

The Sports Leaders UK ‘Secured Port’

Move it to your junk folder or delete it

Contact IT for assistance

Open and read the email

None of the above

To advise the IT Service Desk another user may be misusing equipment

Requesting a new password because yours has been compromised

To request a new user account for a new member of staff

To extend the period of time a mailbox remains available

To advise the IT Service Desk a staff member is about to leave the organisation

Advise your Operations Support Advisor contact

Contact the IT Service Desk immediately

Contact your line manager immediately

Email the Sports Leaders UK distribution group to let everybody know

When logged in to terminal services I will save an organisational document on to my personal laptop/computer/tablet so I can work on it off line. I then upload it again after I have finished.

I save a list of learner and tutor information on to my encrypted memory stick / flash drive.

The responsible tutor assessor has requested I send them the list of learner names and dates of birth on their current course so they can check they are all correct. I have confirmed that I am speaking with the right person following the correct procedure. I then email them the list using my Sports Leaders UK account.

All of the above

I save all of my information to my department’s folder on the shared S drive or to my personal Y drive only

I forward work emails to my personal email so I can work on this information from home

When logged in to terminal services I will save a document on to my personal laptop/computer/tablet so I can work on it offline. I then upload it again after I have finished

I take a list of learner and tutor information with me out of the office on my memory stick/flash drive because it is encrypted

Give them your password and other login details that they may need to fix the problem

Tell them they cannot have your password as we are not allowed to pass this out but let them connect to your computer to fix the problem as our support company have fixed issues by connecting to your computer on previous occasions

Explain that you have not been notified and need to check that their request is valid. Call the IT Service Desk to verify and do not grant access until this has been confirmed

All of the above

Category 1

Category 2

Category 3

Category 4

Information from their database record (e.g. email address)

Name of first Pet

Date of Birth

Mothers Maiden Name

Inform the IT Service Desk

Get consent from your line manager

Ensure the equipment meets standards as defined in the Information Security Policy

None of the above

If they use any organisational mobile equipment they are responsible for ensuring it is kept safe and secure

They are responsible for ensuring that no equipment is taken from their surroundings without authorisation

They are responsible for ensuring that filing cabinets and doors that are their responsibility are locked and that any electronic equipment is locked or switched off before leaving the premises

All of the above

Request access to our S drive departmental folder and any database systems that my team use

Request that they have any new equipment that may be relevant to their new position. (Monitor, laptop, mobile phone etc)

Submit an NA1 form to the IT Service Desk

Submit an AC1 form to HR

Ensure that the third party or contractor has a formal agreement with us for the work and that it has been agreed

Consider the risk of the third party or contractor having access and the necessity of the work then decide if access should be granted, denied or if their access should be monitored

Ensure that keys are not left in filing cabinets and papers are filed away

Ensure that computer equipment is locked, turned off or removed from the area

Ensure that private rooms containing critical equipment of confidential information cannot be accessed

Make other staff aware of their presence and where they are expected to need access to

Any email sent to 10 or less external users

Any email sent to 15 or more external users

Any email with an attachment larger than 10MB sent to an external user

None of the above 

Contact the IT Service Desk

Obtain managerial authorisation

Request through the IT Service Desk and obtain managerial authorisation

All of the above