Offboarding Checklist
Aligned with NIST SP 800-53r5: AC-2 (Account Management), PS-4 (Personnel Termination), IA, and AU families, NIST SP 800-12r1: Sections 7 & 8 (User Access Control & Audit Trails) and FCA Compliance
Document Version: 1.0 Owner: IT Security / HR Confidential – Internal Use Only
Section A: Employee Details
Full Name
Employee ID
Job Title
Department
Manager Name
Last Working Day
Offboarding Type
☐ Voluntary ☐ Termination ☐ Redundancy
Reason for Departure
Section B: Access Termination
Disable user accounts (AD, Azure, Okta, Google, etc.)
IT
Remove VPN and remote access
IT
Revoke access to internal systems (email, CRM, ERP, etc.)
IT
Reclaim company devices (laptop, mobile, USBs)
IT / Facilities
Collect physical access cards/badges
Facilities
Revoke privileged credentials/admin access
Security
Disable MFA/SSO credentials
IT
Remove from mailing lists/distribution groups
IT
Retrieve software licenses and reassign as needed
IT
Update IAM register
Security
Section C: Data Security & Handover
Confirm all critical data has been transferred or archived
Line Manager
Redirect emails or set auto-response
IT
Secure deletion of locally stored sensitive data
IT / Security
Backup cloud storage (OneDrive, Google Drive, Dropbox, etc.)
IT
Review shared file/folder ownership
IT
Section D: HR and Compliance
Conduct HR exit interview
HR
Review signed NDAs and confidentiality agreements
HR / Legal
Provide final payslip and benefits termination
HR
Confirm data privacy and compliance measures completed
Compliance
Record in personnel termination log
HR
Section E: Sign-off
Line Manager
IT Representative
HR Representative
Security Representative
Notes:
All completed checklists are stored for audit and compliance purposes.
High-risk role departures (e.g., IT admin, finance, privileged access) may trigger post-departure monitoring.
Departed employee accounts should be reviewed during quarterly access recertification.
Last updated