1. Purpose
To ensure that Abergeldie IT is notified of all overseas travel prior to departure so that appropriate ISO27001 aligned risk assessments can be performed and security controls can be adjusted to prevent legitimate users from being blocked by the Abergeldie Huntress monitoring systems.
2. Scope
This procedure applies to all Abergeldie employees, contractors, and consultants who use an Abergeldie issued account or device and intend to travel internationally.
3. ISO27001 Compliance Rationale
Under ISO27001:2022, controls such as A.5.7 (Threat Intelligence), A.8.16 (Monitoring Activities), A.8.20 (Identity Management), and A.8.23 (Web Filtering) require the organisation to detect anomalous activity, monitor for unusual sign‑ins, and protect accounts from compromise.
International sign‑ins from unexpected locations are treated as high‑risk events. Without prior notification, Huntress and other security systems may classify these events as potential account compromise, resulting in automatic blocking or containment actions.
Advance notification enables IT to:
- Perform a travel risk assessment (destination risk, geopolitical risk, cyber‑crime prevalence, device safety).
- Pre‑approve expected foreign IP ranges and authentication patterns.
- Temporarily adjust monitoring thresholds to avoid false positives.
- Ensure the user maintains secure access without triggering automated account blocks.
4. Mandatory Requirements for Travelling Users
4.1 Notification Requirement
All users travelling overseas must notify Abergeldie IT via a Zendesk request before travel occurs.
4.2 Submission Method
Users must lodge a Zendesk ticket containing:
- Full name and Abergeldie username
- Travel start and end dates
- Countries and cities being visited
- Whether an Abergeldie device will be taken
- Contact details while overseas
4.3 Minimum Notice Period
Notification must be submitted at least 5 business days prior to departure to allow IT to complete the risk assessment and configure monitoring exceptions.
5. IT Responsibilities
Upon receiving a travel notification, IT will:
- Conduct an ISO27001 aligned travel risk assessment.
- Validate the legitimacy of the travel request with the user’s manager if required.
- Apply conditional access exceptions or monitoring adjustments for the approved travel period.
- Document the assessment and approval in the Zendesk ticket for audit purposes.
- Revert monitoring settings after the user returns.
6. Consequences of Non‑Compliance
Users travelling internationally without prior approval may trigger automated Huntress containment actions. This can result in:
- Immediate blocking of the Abergeldie account
- Forced password reset
- Mandatory security investigation
- Potential disciplinary action for repeated non‑compliance
7. Responsibilities of Travelling Users
- Ensure all travel details are accurate and submitted before departure.
- Use only approved devices and follow all Abergeldie security policies while overseas.
- Report any suspicious login alerts or device behaviour immediately.
- Notify IT if travel plans change (dates, destinations, device loss, etc.).
8. Record Keeping
All travel notifications, risk assessments, approvals, and monitoring adjustments must be retained in Zendesk for audit evidence and ISO27001 compliance.