Change Requested:Federal Information Security Management Act (FISMA) Control AS-2.4.2 states "Owners periodically review access to ensure continued appropriateness." Our Account Management procedures state the Information Owners need to review user access biannually to ensure the access granted is appropriate. We are requesting inquiries or reports be developed so the DPAS Information Owners can review the access assigned to their users.Recommended Solution:Develop an inquiry to show the following information:User Id, Full Name, Email Address, Active, Last Login Date, Expiration date, Is Suspended, Is Expired, Established By, Established By Dt/Time, Last Updated By, Logistics Program, Region, Site, Warehouse, every role assigned for each Warehouse, Training Completion Date for each role and every Commodity Type for each Warehouse.If the user?s access is driven at the level (Logistics Program, Region, Site & Warehouse) where the roles are assigned, then we will need a way to reflect that information as well. For example, on the PA side this is the user?s Level of Access. On the Warehouse side it seems the user?s access varies depending on what level the roles are assigned to the user?s account.We will be developing a new role called Admin Reports. This role will not have any training associated with it. This report needs to be available to Security Officers and to anyone who is assigned the Admin Reports role.Joe Stossel comment, 2/24/2015 - Is this the same as SCR 603??
Disclaimer | Accessibility