Onboarding is the structured process for integrating new employees into the organization. From an information security perspective, this includes signing non-disclosure agreements (NDA), completing security awareness training, setting up user accounts following the principle of least privilege, and issuing pre-configured devices. ISO 27001 Annex A.6.1 through A.6.3 cover requirements for screening, employment terms, and awareness. A standardized onboarding process ensures every new employee understands security requirements from day one and receives only the access rights necessary for their role.