We define and communicate security roles and responsibilities for all Redoxers during the pre-employment or contract process (prior to employees being granted access to our systems).
All Redoxers receive appropriate training during onboarding, as well as annually and/or when required by role change. Training includes, but isn't limited to, the following:
- telecommuting
- clear desk/clean screen
- HIPAA fundamentals
- privacy
- identifying insider threats
Job descriptions set expectations of security roles and responsibilities and are agreed to upon hire. We provide role-specific training for any role with specialized security responsibilities—including senior leadership, engineers, system/software developers, and incident responders—within 60 days of a Redoxer being assigned to a specified position, and annually thereafter.