5

Is anyone familiar with an ISO standard outlining the hiring of labour for vendors being hired by DHS or Canadian government? I've found security standards but nothing for hiring practices.

Edit for clarification. Our company will be selling to the public sector for city engineering and emergency services. Since we're providing applications, we'll need to conform to standards for security. We've been able to find standards for software security, but nothing explaining labour practices (minimum pay, background checks, repeated background checks). I estimate it will take some research to find this information so if anyone has previous experience I'd be grateful to hear the insight. Thanks :)

nealmcb
  • 20,544
  • 6
  • 69
  • 116
crockpotveggies
  • 193
  • 6
  • 3
    I think if you spell labor, *"labour"*, you're automatically disqualified ;) – AviD May 06 '11 at 10:54
  • @DeLonge - The question looks pretty vague to me. Care to specify what you're after? – Iszi May 06 '11 at 14:08
  • @AviD LOL I moved to Canada and adopted "English" spelling. But unfortunately for you a third of the world spells it that way ;) – crockpotveggies May 07 '11 at 07:22
  • @Iszi I am making an edit to clarify. – crockpotveggies May 07 '11 at 07:22
  • @DeLonge I'm not sure ISO would concern themselves with hiring policies for national governments. –  May 07 '11 at 12:49
  • 1
    @Graham I agree it's a diverse and dynamic issue. I'll try to find who the best organization is for such standards/accreditation. – crockpotveggies May 08 '11 at 23:52
  • How could there be an ISO standard for hiring for at DHS? Doesn't ISO stand for International Standards Organization? If the ISO is prescribing who DHS hires, then I want an entirely new DHS. And last I checked, Canada was laboring under the impression that they got to make their own laws without resort to either US or ISO. If the Canadian parliament has been replaced by the ISO, then someone is drawing a salary they don't deserve. – MCW Nov 16 '12 at 13:27

2 Answers2

2

Common Criteria is a system level standard used by both counties (along with many others depending on the accreditation plan) but that does not address your question. If the issue is related to hiring foreign coders there may be a problem if the project touches International Traffic in Arms Regulations (ITAR) and Export Administration Regulations controls in the US. This PDF may help http://www.bis.doc.gov/seminarsandtraining/training-modules/essentials_of_export_controls_modules_1_6.pdf The technology used, if controlled, could present an issue even if the product is not for export as the knowledge is controlled from export as well.

zedman9991
  • 3,377
  • 15
  • 22
  • Interesting I appreciate the link. If I find any specific criteria that answers the question I will also post it here. It's a good start. – crockpotveggies May 09 '11 at 00:04
1

Within the USA, the Department of Labor exists to provide that information. Of course there are additional tiers of laws at the state level, but the Department of Labor will be happy to tell you about minimum pay, etc. It is, quite literally, their raison d'etre.

With respect to background checks, I'm not entirely sure at the local/city level, but I suspect you'll find that the common denominator is either the Public Trust Clearance or the background check required for the HSPD-12 credential ( I think that is a NACI today but will change in the near future).

Wikipedia is a fairly good place to start for both countries. Figure out the credentials required, and that should tell you what identity vetting and background investigation is required.

MCW
  • 2,572
  • 1
  • 15
  • 26