Page Comparison

...

...

Audit and recertification policies are actionable snapshots of data that reveal the access to resources granted to people and roles, the assignments of people to roles, and the security assignments that have been made against protected resources like Exchange mailboxes, applications, and groups. As an auditor or line manager, you can review this data, recertifying and revoking the access to resources the people have within your organization. The topics in this section show you how to get started with these policies.

...

...

Getting Started

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

FULFILLING REVOKES

...

Access recertification, also known as attestation, is a process that helps organizations ensure that users have the appropriate level of access to the resources. At any point, the users should have only enough access needed to do their jobs, and the access complies with the company's policies and regulations. The process typically involves reviewing user access rights, such as permissions to access sensitive data or systems, and comparing them to the users' job responsibilities and roles within the organization. The final goal of the process is to find any discrepancies to investigate and address.

Managing user access and maintaining compliance is getting complex, with organizations having more systems and applications. EmpowerID allows you to manage your access certification and governance, audit user access to critical systems, recertify discrepancies and provide access revocation. With the help of the Recertification features provided by EmpowerID, you can define and automate the process of collecting data for recertifying user access and presenting it to auditors regularly.

You can create recertification policies in EmpowerId that outline which users and what access rights will be reviewed. Once the policies are established, you can add these policies in multiple audits enabling you to granularly configure to collect different types of data in a single audit. EmpowerID uses a task-based approach for Recertification, which creates business requests for each access policy to be rectified based on the recertification policy. These requests are notified and presented to auditors, who can recertify access by providing a decision in a task window.