Hello,
we have got a problem regarding risk analysis (GRC AC ARA within access request) in case e.g . someone moves to another department.
The two roles A and B together are causing a risk (SoD violation). At the moment the user has got role A which is valid to 03/31/2018. If I try to assign role B valid from 04/01/2018 to the user via access request, the risk occures. The risk analyses shows the risk despite the two roles are separated in time.
An ugly workaround for us is, to wait assigning the role til 04/01/2018.
Do you know another solution of the problem? How do you handle the change of an user to another department?
Regards,
Marco
Bluesky
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.