0
04

User Access Reviews

In this topic, you’ll learn about your responsibilities in supporting reviews of the access our people have to our information.

Let’s revisit the story of Sage for a moment. Remember the employee who had unauthorised access to client information?

That employee was arrested, but the case highlights the importance of protecting our information from unauthorised access by both external and internal parties.

In this case, all the employee needed was an internal login and she caused significant damage.

Her login was valid, but should she have had access to that data in the first place?

By ensuring that her access was regularly reviewed and fit for purpose, this breach could have been prevented or better contained.

The Sage story part II

It’s important that we control the access that people have to our information. Reviewing and validating who has access to our services on a regular basis is fundamental in protecting our information and preventing fraud and misdemeanor.

Click play to watch the video. When you have finished, continue scrolling down the page.