Security Manager Controls

Certification

ATTESTATION (Certification) provides a key audit requirement to periodically verify and validate user access for compliance and risk reporting. Various types of attestation services can be configured and implemented to periodically perform access reviews, micro-attestations for user movements into or between organizations, role owner or firefighter activity reviews. The system compiles progress reports to follow through and complete the reviews in the most efficient manner.

The following Attestation / Certification related controls are organized by Control Type . You can also “Jump To” Control Types and Categories by clicking on the link located at the right of this screen.

The following are links to more detailed pages:

All

Showing 13 controls:
Control TitleControl TypeRisk Rating
Certification audit history: List all the details/tasks of a completed certification IT General Controls High
Certification progress history IT General Controls Low
Certifications with errors IT General Controls Low
Monitor all users and their access for whom the Certification is expired IT General Controls Low
Monitor Inactive Certifiers IT General Controls Medium
Monitor inactive users with active accounts Identity Governance High
Monitor missing managers for users in Certification scope IT General Controls Medium
Monitor missing role owners Identity Governance, IT General Controls High
Monitor Orphan Accounts Identity Governance High
Monitor pending access review for users marked “Does not work for me” IT General Controls Medium
Monitor pending certifications IT General Controls Medium
Monitor pending tasks – for “Locked” certifications IT General Controls Medium
Revoke all access if Certification is expired IT General Controls High