How to Ensure Your Data is Accurate
Internal and external auditors often ask for proof of "completeness and accuracy." This essentially means they want to see evidence of the processes and procedures you use to ensure that the data in Permission Assist accurately represents the data in your application. We continuously work to surpass industry expectations when it comes to helping you make sure your data is accurate and complete. That being said, everyone's data is unique, and you know your data better than anyone else. You're also ultimately responsible to your auditors, so it's important that you're prepared for audits and confident that your data is accurate. The following documentation provides recommendations for ensuring your data is accurate and suggestions for steps you can take to prepare for future audits.
Ensuring Data Is Accurate
When a new plugin is added for the first time, or when significant updates have been made to a plugin, we recommend doing some verification so you feel confident in the results and are prepared for future audits.
NOTES:
-
Document this process for audit and examination purposes - especially if you are importing data for the first time or if you are creating an official baseline of data. Often, auditors will require this type of documentation to prove completeness and accuracy.
-
This verification step does not need to be done every time you import data.
-
If you'd like a worksheet to help you record and store this information, contact your Sycorr client success specialist at sycorr.com/support.
Verifying Import Data
To verify results, go through your standard verification process as usual. If you don't have a standard process already in place, typical checks we suggest are listed below:
Total counts
Compare the total number of users within the application to the number of users that were imported into Permission Assist. The total number of users is displayed on the import summary page after data is imported. You can also view import data by going to: Manage > Applications > select the application > select the import.
If groups and group permissions are also being imported, compare the total number of groups within the application to the groups within Permission Assist. The total number of groups is also displayed on the import summary page after data is imported. You can also view import data by going to: Manage > Applications > select the application > select the import.
Preparing for audits:
If this is your first import or if you want to create a new baseline set of data, your auditors may ask for the followin documentation related to total counts:
Screenshots of the users list within the application just before downloading the report (include the date and time)
Screenshots of the groups list within the application just before downloading the report (include the date and time)
If the plugin isn't connecting to the application directly, they'll often ask for screenshots of the reports being downloaded within the application (include the date and time)
The original file that was imported into Permission Assist
NOTE: This file is saved with the import data for historical and auditing purposes. When a review is started, the file and the import statistics are included in the Application Imports report.
Headers, roles, and permissions
Use the Privileges tab within the application to make sure all the headers, roles, and permissions are showing up as they should be. To get to the Privileges tab, go to Manage > Applications > select the application > Privileges tab.
Preparing for audits:
If this is your first import or if you want to create a new baseline set of data, your auditors may ask for the following documentation related to headers, roles, and permissions:
Screenshots of the permissions within the Privileges tab (include the date and time))
Spot check
Select a statistically significant number of users and review their permissions in detail to ensure their permissions are showing up accurately. It's also helpful to check any "odd ball" users (users that may be set up differently than most.) To spot check users, go to Manage > Applications > select the application > Users > select a user > Privileges tab in the detail panel on the right side of the page.
Preparing for audits
If this is your first import or if you want to create a new baseline set of data, your auditors may ask for the following documentation related to spot checks:
For each user spot checked:
Screenshots of the user's permissions within the application (include the date and time)
Screenshots of the user's permissions within Permission Assist (include the date and time)
Additional reports you may want to generate and store with your documentation are listed below:
Application Users (Reports menu > Applications > select the application > Application Users report)
Application Groups (Reports menu > Applications > select the application > Application Groups report)
Current Permissions by Application (Reports menu > by Application > select the application > Export button)
Current Identity Permissions (Reports menu > by Identity > select the Identity > Export button)