BADGE & ACCESS CONTROL
All personnel badges must be worn in this visible position at all times inside the facility.
What is above the waist, visible?
The first action(s) you should take if you see a door to a restricted area propped open.
What is close the door and report to security if needed?
Computer screens must be placed in this state when the user steps away from the workstation.
What is locked?
The form that must be submitted to CDC or APHIS after any loss, theft, or release of a select agent.
What is APHIS/CDC Form 3?
All visitors in restricted areas must be accompanied at all times by this person.
Who is an escort?
The first people that should be notified if your badge is missing
Who are the RO, ARO and HR?
Individual allowed to enter restricted areas without a badge.
Who is no one?
According to the Information Security Policy, passwords must never be in these two forms.
What is shared or written down?
The first individuals to be notified following any security or safety incident.
Who is the Responsible Official (RO) or Alternate Responsible Official (ARO)?
This form or log must be completed for every visitor entering the facility.
What is the Visitor Sign-In Log (FRM-11877)?
Length of time loaner badges may be checked out
What is one day?
Length of time CCTV footage is retained under SOP-04617
What is 30 days?
Documents labeled “CONFIDENTIAL” must be handled in this manner after use.
What is secured or shredded immediately?
After securing an area involved in a breach, these two follow-up actions must be performed.
What are report the event and document the response?
According to SOP-04605, escorts must dedicate full attention to visitors rather than performing this.
What is Multitasking?
This action, involving sharing your access badge with another person, is strictly prohibited.
What is lending or sharing a badge?
Response to an unfamiliar person in a secure zone.
What is politely challenge and verify with security?
Personal USB drives or other removable media may not be used on these systems.
What are laboratory or company computers?
Communication with the media following an incident is restricted to these individuals.
Who are company leadership or Legal representatives?
The individuals responsible for maintaining and approving the “Authorized Escort List.”
Who are the Responsible Official (RO) or Alternate Responsible Official (ARO) and Security?
What is one year?
This department must be notified immediately when a security camera goes offline or loses signal.
What is IT Security?
The policy that governs all IT and data protection requirements within the facility.
What is POL-08105 Information Security Policy?
Once a breach has been contained, this is the next critical step required by SOP-04617.
What is immediate notification and documentation of the event?
When a visitor fails to follow security policy, the escort must take this immediate action.
What is Report the incident immediately to the RO or ARO?