Request Security Access Reports
Agency Security Officers (ASO) may have a need to request security access reports outside of the normal distribution schedule. ASOs may also require reports on user activity, such as the dates that a user logged in, a user’s after hours log in times, etc.
Requests for Security Access Reports are submitted by Agency Security Officers via Service Now (SNOW) Employee Self Service (ESS). Requests will be acknowledged upon receipt and a follow up response will be provided within five days by the ITS, Security Systems Administration Branch (SSAB). If SSAB cannot process a request, the requester will be informed that the request is being transferred to the appropriate department or staff. The individual to whom the request is being transferred and their contact information will also be provided.
Review Security Access Reports
Agency Security Officers must view security access reports at least quarterly to ensure that users’ access is commensurate with their job responsibilities. Agency Security Officers must also ensure at least quarterly that users’ accounts are assigned the least privileged access required to complete their job functions, and that users’ accesses enforce separation of duties. If separation of duties cannot be enforced, for example, due to limited staffing, Agency Security Officers should ensure that compensating controls, such as reports to monitor user activity, are in place.
If Agency Security Officers determine that access changes are required as a result of reviewing these reports, it is the Agency Security Officers’ responsibility to take the necessary action to request modification of the security access and keep accurate records of those changes (report distribution e-mails, security access request e-mails, etc.) as proof that as a result of the report review, the necessary access changes were made.
Reports available upon request are: FUND, FSDE, SPPS, EPIC, Reporting Center, ITRS, OFEE, Insight & User Activity.
Reports available monthly are: SecuRemote (delivered via GovDelivery), Mainframe Inactivity & Contractor Expiration.
Reports available quarterly are: PMSO, IRIS, PINQ, TINQ, PROP, OTRS, EMIS, FAAD, & MINC.
If there are problems with a Security Access report after it has been delivered, the Agency Security Officer should contact the Operations and Security Center (OSC) at 1-800-767-9641, or e-mail firstname.lastname@example.org or put in a trouble ticket via ServiceNow.