News Disgruntled ex-employee costs company over $600,000 after he deletes all 180 of its test servers — found server deletion scripts on Google

[CmdrShepard]

The rule is to remove credentials at least 2-3 days before his last. He can use his final days training his successors.

That wouldn't work here and in most of EU.

Employment laws (quite rightfully if I may add) do not allow you to remove their access to anything until their last day of employment. That's when they turn over their phone, laptop, keys, access cards, etc and that's when their accounts are terminated. I know because I worked as an IT admin and worked with HR people on account termination for those employees who were either let go or quit.

And if you are asking yourself why, it's because in normal countries people are presumed innocent until proven guilty.

TL;DR -- you can't treat your employees like criminals (or rather you can, but then don't act surprised when they do eventually fulflill your expectations).

On a side note here it is customary that people who are leaving use their vacation days right before they leave so they usually don't even come into office until the last day. It's also customary to make a farewell party with some food and drinks unless a person was really bad and relations are tense.

 

[bit_user]

On a side note here it is customary that people who are leaving use their vacation days right before they leave so they usually don't even come into office until the last day. It's also customary to make a farewell party with some food and drinks unless a person was really bad and relations are tense.

That's usually for people who are retiring or leaving voluntarily. I've never heard of a farewell party when people are being downsized, even in the EU-based office where I have coworkers.

 

[CmdrShepard]

That's usually for people who are retiring or leaving voluntarily. I've never heard of a farewell party when people are being downsized, even in the EU-based office where I have coworkers.

It can happen in an unofficial capacity.

 

[USAFRet]

The rule is to remove credentials at least 2-3 days before his last. He can use his final days training his successors.

I've never seen that rule.

At a previous company, our head network guy was marched out the door, after multiple warnings of "K, Stop doing this."

His access was removed about 5 minutes from getting walked out the door.

 

[worstalentscout]

That's what happens when you let foreign consultants work in your IT infrastructure.

i'm from Singapore (where the affected company is based)..............the employee is from India............there's been many cases of these IT experts from India that were found to have fake degrees.............and some of them will cause a lot of trouble - even holding former employers at ransom over source code or whatever.........

 

[danny009]

"Running men will fight again"
-Roman proverb

 

[pug_s]

It's unfair to generalize from this single example. I'm 100% certain there are oodles of examples that don't involve a foreign worker.

I'm not against foreign workers, but most of the times these IT foreign workers don't have high levels of backend access which can do potentially do the most damage. These workers are the ones which has to be properly vetted.

i'm from Singapore (where the affected company is based)..............the employee is from India............there's been many cases of these IT experts from India that were found to have fake degrees.............and some of them will cause a lot of trouble - even holding former employers at ransom over source code or whatever.........

Exactly, that's the problem with not properly vetted employees.