Artifact: Access Control Discrepancies

A documentation of the Application's discrepancies against the Access Control Standard.

Relationships

Roles	Responsible: IAM Specialist	Modified By: IAM Specialist
Tasks	Input To: Obtain Access Control Exception Sign-off	Output From: Conduct IAM Action Plan Review

Description

Main Description	A documentation of the Application's discrepancies against the Access Control Standard where the Application does not comply. If there are exceptions, business cases and compensating controls should be documented.

Tailoring

Impact of not having	Could result in an audit finding.
Reasons for not needing	The Application fully complies. Upgrades to a system that has no user authentication changes. Projects that do not include applications.

Version and Release

Unified Life Cycle (ULC): 5.1, November 3, 2014
Phase Gates: 1.1, May 27, 2014
Process Engineering Process (PEP): 1.1, May 27, 2014