312-50V11 · Question #390
How do employers protect assets with security policies pertaining to employee surveillance activities?
The correct answer is D. Employers provide employees written statements that clearly discuss the boundaries of. Employers protect assets and limit legal liability related to employee surveillance by issuing written policies that formally define the scope and boundaries of monitoring activities.
Question
How do employers protect assets with security policies pertaining to employee surveillance activities?
Options
- AEmployers promote monitoring activities of employees as long as the employees demonstrate
- BEmployers use informal verbal communication channels to explain employee monitoring activities
- CEmployers use network surveillance to monitor employee email traffic, network access, and to
- DEmployers provide employees written statements that clearly discuss the boundaries of
How the community answered
(17 responses)- B6% (1)
- C6% (1)
- D88% (15)
Why each option
Employers protect assets and limit legal liability related to employee surveillance by issuing written policies that formally define the scope and boundaries of monitoring activities.
Monitoring rights are not contingent on observed employee behavior; employers have broad rights to monitor company-owned assets regardless of whether an employee demonstrates wrongdoing.
Verbal communication channels are legally insufficient for establishing monitoring policies because they lack documentation and cannot serve as evidence in legal or HR proceedings.
Network surveillance describes a technical monitoring method, not the security policy mechanism employers use to legally establish governance and protect themselves from liability.
Written statements - typically an Acceptable Use Policy (AUP) or employee handbook clause - legally notify employees of monitoring scope, establishing consent and eliminating a reasonable expectation of privacy on company systems. This documented notice protects the employer's right to monitor and provides a legally defensible record that employees were informed. Written policy acknowledgment is considered a governance best practice and is often legally required before monitoring can be enforced.
Concept tested: Acceptable use and employee monitoring written policy
Source: https://csrc.nist.gov/publications/detail/sp/800-12/rev-1/final
Topics
Community Discussion
No community discussion yet for this question.