Work Product (Artifact): Access Control Discrepancies

A documentation of the Application's discrepancies against the Access Control Standard.

Relationships

Roles	Responsible: IAM Specialist	Modified By: IAM Specialist
Input To	Mandatory: Obtain Access Control Exception Sign-off	Optional: None	External: None
Output From	Conduct IAM Action Plan Review

Main Description

A documentation of the Application's discrepancies against the Access Control Standard where the Application does not comply. If there are exceptions, business cases and compensating controls should be documented.

Properties

Optional
Planned

Tailoring

Impact of not having	Could result in an audit finding.
Reasons for not needing	The Application fully complies. Upgrades to a system that has no user authentication changes. Projects that do not include applications.

Version and Release

Unified Life Cycle (ULC): 5.1, November 3, 2014
Phase Gates: 1.1, May 27, 2014
Process Engineering Process (PEP): 1.1, May 27, 2014