Access recertification, also known as attestation, is a process that helps organizations ensure that users have the appropriate level of access to the resources. At any point, the users should have only enough access needed to do their jobs, and the access complies with the company's policies and regulations. The process typically involves reviewing user access rights, such as permissions to access sensitive data or systems, and comparing them to the users' job responsibilities and roles within the organization. The final goal of the process is to find any discrepancies to investigate and address.
Managing user access and maintaining compliance is getting complex, with organizations having more systems and applications. EmpowerID allows you to manage your access certification and governance, audit user access to critical systems, recertify discrepancies and provide access revocation. With the help of the Recertification features provided by EmpowerID, you can define and automate the process of collecting data for recertifying user access and presenting it to auditors regularly.
You can create recertification policies in EmpowerId that outline which users and what access rights will be reviewed. Once the policies are established, you can add these policies in multiple audits enabling you to granularly configure to collect different types of data in a single audit. EmpowerID uses a task-based approach for Recertification, which creates business requests for each access policy to be rectified based on the recertification policy. These requests are notified and presented to auditors, who can recertify access by providing a decision in a task window.
There are prerequisites for the Recertification to work. Please ensure that the following jobs are enabled and running.
Attestation Policy Compiler Job
Business Request Fulfillment Job