Laserfiche WebLink
2. Understanding of the IDIS Online Rules of Behavior (IDIS RoB) security requirements. <br />3. Acknowledgement that disciplinary action may be taken based on violation ofthe IDIS RoB. <br />The IDIS Online System Security Administrator (SSA) verifies that the users who require access to IDIS Online have read and <br />accepted (via signature on the acceptance form) this IDIS RoB. <br />Other Policies and Procedures <br />This IDIS RoB is intended to enhance and further define the specific rules each user must follow while accessing IDIS Online. The rules are <br />consistent with the policy and procedures described in the following directives: <br />npym,anun nu¢e5 <br />Because written guidance cannot cover every contingency, you are asked to go beyond the stated rules, using your best judgment <br />and highest ethical standards to guide your actions. These rules are based on Federal laws and regulations and HUD policies. As <br />such there are consequences for non-compliance. The following IDIS RoB is the minimum rules for users who are requesting an IDIS <br />Online user account: <br />1. You are aware of the existence of and penalty for violating 18 USC 1030 and abide by: <br />a. The elements of 18 USC 1030(a)4, "Accessing to Defraud and Obtain Value" are: <br />i. Knowingly accessing a protected computer without or in excess of authorization; <br />ii. With intent to defraud; <br />iii. Access furthered the intended fraud; and <br />iv. Obtain anything of value <br />b. The penalty for violating this statute includes a fine and imprisonment of not more than ten years, or both. <br />2. You must adhere to HUD's policy requiring a separation of duties between the requester and approver for financial <br />transactions: <br />a. Effective December 14, 2001, the same person can no longer both request and approve a given draw down in IDIS <br />Online. <br />b. While individual persons may have the power to both request and approve draws, this rule prevents an individual <br />from approving a draw that he or she created. IDIS Online requires two people to be involved in every draw down <br />of funds. <br />3. Currently, the IDIS Online Local Administrator initially defines what a person can do in IDIS Online, carrying out the <br />wishes of each grantee's authorizing official — mayor, grant holder, CEO, CFO, etc. Some users have full rights, while <br />others have limited rights of various kinds. You understand that you are given access only to IDIS Online to which you <br />require access in the performance of your official duties and that you will not attempt to access systems that you are not <br />authorized to access. <br />4. You are prohibited from misusing IDIS Online, i.e., exceeding your authority. Your level of access to IDIS Online is limited to <br />ensure your access is not more than necessary to perform your legitimate tasks or assigned duties. If you believe you are <br />being granted access that you should not have, you must immediately notify the IDIS Online SSA via email at <br />IdisUser!dRequests@hud.gov. <br />5. You must immediately notify your Supervisor, CPD Field Office Administrator, and/or your Local Grantee Administrator if <br />your access/privilege are no longer required, termination, promotion, and transferred. <br />6. You must maintain the confidentiality of your authentication credentials such as your password. Do not reveal your <br />authentication credentials to anyone and do not record passwords on paper or in electronic form. <br />7. You must report all security incidents or suspected incidents (e.g., lost passwords, improper or suspicious acts) related to <br />IDIS Online to the HUD Computer Incident Response Team at CIRTfL@hud.Rov. <br />8. Your IDIS Online password expires every 90 days, so ensure you access IDIS at least once a month. Users who do not use <br />IDIS within a 90 day period will find their accounts are de -activated. <br />ALL PREVIOVS VERISONS OF THIS FORM W ILL NOT BE ACCEMEO 01 PROCESSED HUD FORM 27055 ( 0515 E017) <br />RAIC f, <br />