HRS — Human Resources Security
46 controls in the Human Resources Security domain
HRS-01Human Resources Security Management
HRS-01.1Onboarding, Transferring & Offboarding Personnel
HRS-02Position Categorization
HRS-02.1Users With Elevated Privileges
HRS-02.2Probationary Periods
HRS-03Defined Roles & Responsibilities
HRS-03.1User Awareness
HRS-03.2Competency Requirements for Security-Related Positions
HRS-04Personnel Screening
HRS-04.1Roles With Special Protection Measures
HRS-04.2Formal Indoctrination
HRS-04.3Citizenship Requirements
HRS-04.4Citizenship Identification
HRS-05Terms of Employment
HRS-05.1Rules of Behavior
HRS-05.2Social Media & Social Networking Restrictions
HRS-05.3Technology Use Restrictions
HRS-05.4Use of Critical Technologies
HRS-05.5Use of Mobile Devices
HRS-05.6Security-Minded Dress Code
HRS-05.7Policy Familiarization & Acknowledgement
HRS-06Access Agreements
HRS-06.1Confidentiality Agreements
HRS-06.2Post-Employment Requirements Awareness
HRS-07Personnel Sanctions
HRS-07.1Workplace Investigations
HRS-07.2Updating Disciplinary Processes
HRS-07.3Preventative Access Restriction
HRS-08Personnel Transfer
HRS-09Personnel Termination
HRS-09.1Asset Collection
HRS-09.2High-Risk Terminations
HRS-09.3Post-Employment Requirements Notification
HRS-09.4Automated Employment Status Notifications
HRS-10Third-Party Personnel Security
HRS-11Separation of Duties (SoD)
HRS-12Incompatible Roles
HRS-12.1Two-Person Rule
HRS-13Identify Critical Skills & Gaps
HRS-13.1Remediate Identified Skills Deficiencies
HRS-13.2Identify Vital Cybersecurity & Data Privacy Staff
HRS-13.3Establish Redundancy for Vital Cybersecurity & Data Privacy Staff
HRS-13.4Perform Succession Planning
HRS-14Identifying Authorized Work Locations
HRS-14.1Communicating Authorized Work Locations
HRS-15Reporting Suspicious Activities