+IAM-04 Withdrawal or Adjustment of Access Rights as the Task Area Changes
---+IAM-04.01B
---+IAM-04.02B
---+IAM-04.03B
---+IAM-04.04B
---+IAM-04.05B
|
1. Übersicht
IAM-04 Withdrawal or Adjustment of Access Rights as the Task Area Changes
-
| Bezeichnung |
Standard |
|
IAM-04.01B
|
Access rights are timely adjusted or revoked if the job responsibilities of the cloud service provider's internal or external personnel or the tasks of system components involved in the cloud service provider's automated authorisation processes change.
This criterion applies to identities that refer to single, multiple or non-human entities.
Changes in the task area of internal and external personnel can be triggered by changes in the employment relationship (e.g. termination, transfer) or in contracts and agreements.
|
|
IAM-04.02B
|
Privileged access rights are adjusted or revoked within 48 hours after the change taking effect.
This criterion applies to identities that refer to single, multiple or non-human entities.
For privileged access rights the definition in IAM-06 applies.
|
|
IAM-04.03B
|
All other access rights are adjusted or revoked within 14 days.
This criterion applies to identities that refer to single, multiple or non-human entities.
|
|
IAM-04.04B
|
After revocation, the procedure for granting identities and access rights (cf. IAM-02) is repeated.
This criterion applies to identities that refer to single, multiple or non-human entities.
|
|
IAM-04.05B
|
In cases of role changes where temporary access may need to be granted, these access rights are approved, time-limited and documented.
This criterion applies to identities that refer to single, multiple or non-human entities.
|
1.1 Referenzen
1.2 Identifizierte Anforderungen
1.2 Related Regulation
2. Identifizierte Anforderungen
Anforderungen
| Source |
Anforderung |
3. Related Regulations
Regulations
| Source |
Regulierung |
|