The scope will be applicable to all activities under the scope statement of Information Dynamics.

2. Inputs

• Service Request Management

• User Access Request

• User Access modification

• Revocation 

3. Definitions

• Access Requestor   the access request.

4. Access Procedure

Logical Access

HR shall imitate an email to the IT department when the employee joins the firm. The IT  department shall provide the minimum access needed the employee inclusive of  desktop.

Physical Access

shall initiate a request to the admin department an employee joins the firm. Based on  this request the admin department configures the employee’s access company

is granted by the IT to respective systems. the approval for the same  should be present from department head and the operations head. 

• Servers

• Network Devices

• Databases

• Applications

• Other confidential information

• Any   user   transferring   between   access   shall   be   treated   as   a   case   of   transfers.   In   case   of  transfers   the   HR   shall   update   the   IT   respective   team   to   revoke   access   of   the   employee   to  the   old   systems.   Any   new   system   access   request   shall   have   to   go   through   a   formal   request.

• In   case   of   leavers,   the   HR   shall   notify   the   IT   team   regarding   the   last   day   of   working   of  the   employee.   The   respective   IT   section   shall   accordingly   revoke   all   access   to   the  systems   and   information   sites.   This   shall   also   be   applicable   to   all   applications   which   are  not integrated.

access shall be provided only after formal approvals. All user and privilege access  shall be reviewed atleast once in 6 months. These access shall be reviewed by the Operations  Head

If any discrepancy found in access reviews, the access be removed on an immediate  basis. 

5. Outputs

• Users Access Granting

• User Access reviews

6. Associated documentation

• Access Control Matrix

7. KPIs