Hi,
I couldn't find an area for Policy questions so I'll start in Newbie. We have a situation here I don't like and am looking for a specific policy or CIA triad violation. We have a scenario where employee who has customer contacts gets terminated. Management wants termed employees incoming email from customers redirected to another employee so the customer doesn't get a mail routed failure message. This means we disable all the accounts for termed employee but keep their internet email address available. Also, the corporate directory will stay out of date.
I don't like this since customers don't know who the email goes to, directory is out of date, and it's just plain unprofessional looking. I'm looking for a specific policy or violation of basic security principles that I can site to stop the madness.
I don't want to re-invent the wheel so I'm sure other companies with customers do this different. Any ideas?
Thanks