Skip to Main Content
March 24, 2023

Deactivate User Access for Terminated, Retiring and Extended Leave

The text "Cybersecurity Tip of the Week"

Failure to deactivate user network and system access when staff retire, terminate service, or are on extended leave (over two weeks) creates a substantial security risk. Agencies are audited on active management of user access. Failure to remove access in a timely fashion can result in an internal control audit finding. It also opens up your agency to security breaches.

Action Steps

See our  CTR Cyber page  for more cybersecurity internal controls to keep you safe at work and at home.

Contact  [email protected]  with any incidents or suspected incidents of fraud or cyber threats or if you need support from our Statewide Risk Management Team.