Holy Name Medical Center Remote Access Policy
1.0 Purpose
The purpose of this policy is to provide guidelines for Remote Access to Holy Name Medical Center’s applications.
2.0 Definition
Holy Name Medical center uses VPN or Citrix to provide access to applications on an as needed basis.
3.0 Scope
This policy applies to all employees, contractors, consultants, temporaries, and other workers including all personnel affiliated with third parties accessing the Holy Name Medical Center network remotely.
4.0 Policy
Approved Holy Name Medical Center employees and authorized third parties (customers, vendors, etc.) may utilize the benefits of Holy Name’s Remote Access, which are a "user managed" service. This means that the user is responsible for selecting an Internet Service Provider (ISP), coordinating installation, and installing any required software.
Additionally,
1. User accounts will only be created when all of the required information is obtained, which includes but is not limited to the completed Remote Access request form and the agreement to this policy.
2. Accounts are typically created within 3 business days. Multiple requests may take longer to process. Urgent requests will be reviewed on a case-by-case basis.
3. All Non-Holy Name Medical Center personnel (customers, vendors, etc.) must provide the contact information for a Holy Name Medical Center employee who has authorized your access. If this information has not been provided or is incorrect an account will not be created. Furthermore if the Holy Name Medical Center contact provided did not authorize access an account will not be created. Any Non-Holy Name Medical Center personnel are required to sign and return our confidentiality and business associates agreements before a account will be created. Any Non-Employee should not be accessing Holy Name resources from home.
4. It is the responsibility of the employee or company with Remote Access privileges to ensure that unauthorized users are not allowed access to Holy Name Medical Center networks. Passwords to Holy Name resources should not be shared.
5. Remote access is controlled using username and password authentication. All users are subject to auditing and their access can be suspended at anytime. We reserve the right to change the way applications are remotely accessed in the future. Passwords to Holy Name resources should not be shared.
6. The following Operating Systems are supported for Remote Access: Microsoft Windows 7 and above, Mac OS X "Mountain Lion" 10.8 and above, Android "KitKat" 4.4 and above, Apple iOS 7 and later.
7. All computers connected to Holy Name Medical Center network via Remote Access must use up-to-date virus-scanning software with the latest virus definitions. Use of anti-virus software other than those provided by McAfee, Symantec, AVG, BitDefender, TrendMicro, Antivir or Kaspersky, must be approved for use by Holy Name Medical Center’s Information Technology Department and may delay your account creation.
8. All relevant security patches for your Anti-Virus software and Operating System must be installed; failure to do so may result in suspension of your account.
9. Users of computers that are not the property of Holy Name Medical Center must configure the equipment to comply with the Holy Name Medical Center Remote Access policy. By using Remote Access technology with personal equipment, users must understand that their machines are a de facto extension of the Holy Name Medical Center network, and as such are subject to the same rules and regulations that apply to Holy Name Medical Center owned equipment.
10. Only Holy Name Medical Center approved Citrix clients are supported which include Citrix Receiver 11.7 and above for Mac, 4.0 and above for Windows, 3.3 and above for Android, and 5.7 and above for Apple iOS.
11. Users of this service are responsible for the procurement and cost associated with acquiring basic Internet connectivity, and any associated service issues.
12. Emergency downtime will be scheduled as needed.
13. This policy is subject to change.
5.0 Enforcement
This policy regulates the use of all Remote Access services to the Holy Name Medical Center network. To maintain security, Remote Access services will be terminated immediately if any suspicious activity is found. Service may also be disabled until the issue has been identified and resolved. Any Holy Name Medical Center employee found to have intentionally violated this policy may be subject to disciplinary action, up to and including termination of employment. Non-Holy Name Medical Center employees and vendors may be responsible for damage as a direct result of policy violation. Intentional and non-intentional violation will result in termination of service and may result in revocation of contract.