
User access reviews
When it comes to user access reviews, Business Owners, Service Owners and Line Managers all have specific responsibilities and accountabilities during the various phases of the process.
Consider the following, and for each, select what specific responsibilities and accountabilities each of the following people have.
As a Service Owner, Doug is for Data Gathering and Business Validation.
As a Service Owner, Doug is for Data Analysis.
As a Service Owner, Doug is for Remediation and Stakeholder Sign-off.
As a Line Manager, Doug is also for Business Validation.
As a Business Owner, Simon is for Data Gathering, Business Validation and Stakeholder Sign-off.
Good work, here is a summary of the responsibilities across the phases of the review cycle.
UAR Phase | Business Owner | Service Owner | Line Manager | Identity and Access Assurance Team |
---|---|---|---|---|
Data Gathering | Accountable | Responsible | Informed | |
Data Analysis | Consulted | Accountable | ||
Business Validation | Accountable | Responsible | Responsible | Responsible |
Remediation | Accountable | Responsible | ||
Stakeholder Sign Off | Accountable | Accountable |
** Refer to the UAR Intranet page for the most up-to-date information about roles and responsibilities.