/
Complete an Application Access Review

Complete an Application Access Review

This article explains how an application owner reviews and confirms the accounts within one or more applications have the right access. Access reviews are critical to maintain application security and are mandated by many regulations such as HIPAA and SOX.

For information on supervisory access reviews, see https://zilla.atlassian.net/wiki/spaces/ZILLASUP/pages/2031583431.

Complete Review Tasks

Application owners receive an email sent on behalf of their organization’s security or compliance team once the access review campaign begins with information including the due date and a link to their access review tasks.

  1. Click Go To Task in the access review notification email, enter your work email address, and click Sign In. Use your organization’s single sign-on tool to authenticate into the application.

  2. On the Tasks page, click on a review task. If you have multiple campaigns or applications to review, they are listed here.

  3. For each permission, select Maintain or Revoke to indicate whether it should be retained or removed. If applicable, add a comment to the review task or reassign the review task to another appropriate reviewer.

  4. Once all permissions have been marked as maintained or revoked, check the box to certify that you have completed the access review and click Submit.

  5. If you have multiple application reviews to complete, go to Tasks, select another task, and repeat the steps listed above until all review tasks are complete.

Zilla maintains the entire record of your review.

Complete review tasks - demo

https://share.vidyard.com/watch/EfC13SymGT2fr2WiEBuAx1