Access Panel allows organizations to run attestation campaigns that combine traditional user entitlement reviews with data access verification. These campaigns prompt designated reviewers—typically managers, application owners, or data custodians—to confirm whether users should retain access to systems, applications, or sensitive data. The review process can be configured to include:
-
Group membership and role-based entitlements
-
Access to specific resources, such as file shares, applications, or databases
-
Data access entitlements, ensuring users only retain access to data appropriate to their role
By combining both types of review into a single, intuitive campaign, organizations can improve oversight, reduce manual effort, and satisfy internal audit and compliance requirements.
Flexible Configuration and Policy Controls
Access Panel campaigns are driven by request and criteria policies, which define:
-
Who is included in the review (e.g., all users with access to sensitive data)
-
What entitlements and data access points must be reviewed
-
Who is responsible for certifying access (e.g., line managers or system owners)
These settings can be tailored to match organizational structures, separation of duties policies, and regulatory requirements such as SOX, GDPR, or HIPAA. All review outcomes are logged with time-stamped evidence, and exceptions can be managed through built-in escalation and remediation workflows.
Comments
0 comments
Article is closed for comments.