Access recertification is an information technology control that includes reviewing user access rights to see if they are proper and comply with the company's internal rules and laws. Recertification is a part of an organization's governance risk and compliance activity. Recertification or attestation are different terms for the same thing. GRC (governance, risk, and compliance) is a collection of rules and procedures that enable firms to achieve their business goals, deal with uncertainty, and behave with integrity. Depending upon the size of the company, whether they are public or non-pubic, and the industry they are in, such as banking or finance, etc., many companies are required by law to perform recertification or attestation of access.
To maintain compliance, your users must have appropriate access to their roles. With the many systems and apps available, this is becoming more complicated and challenging. EmpowerID provides you with the capability to manage your access certification and governance, audit your critical systems and users, recertify them, provide revocation fulfillment, and much more.
There are prerequisites for the Recertification to work. Please ensure that the Attestation Policy Compiler Job and Business Request Fulfillment Job are running. More information about the prerequisites is provide in docs Pre-requisite for Recertification