Establishing a Service Level Agreement (SLA) for employee onboarding ensures that new personnel are integrated seamlessly into your organization’s culture of security and compliance. Drata enables automated provisioning of employee and contractor accounts, allowing access through G Suite or Office 365 upon account activation. This ensures that new personnel are equipped to begin their compliance journey from day one.
While the ideal scenario involves completing all onboarding steps—including background checks and security training—before granting access to critical systems or customer data, we understand that not all onboarding processes are completed on the first day. To balance operational flexibility with compliance needs, you can define an SLA specifying the allowable timeframe for onboarding completion in your organization's Information Security Policy.
Why Set an SLA for Onboarding?
Your employees and contractors serve as the first line of defense against external threats and risks. Ensuring timely completion of onboarding tasks—such as background checks, policy acknowledgments, and security training—is essential for maintaining a secure and compliant workplace.
By setting an SLA, you define the acceptable timeframe for completing onboarding steps before it impacts control tests and compliance metrics.
BEFORE DIVING IN
You must have an admin or information security lead to update the SLA for employee onboarding.
HERE'S HOW
Navigate to the Policy Center and select the 'Information Security Policy'.
Select the edit icon for Policy details.
Then, scroll down to the SLA section. Extend this section to specify the number of days allowed for new employees to complete their onboarding in Drata before your control test related to employee onboarding will be impacted.
Save your changes.