0% found this document useful (0 votes)

26 views4 pages

Access Management Process

Uploaded by

medryte23

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

26 views4 pages

Access Management Process

Uploaded by

medryte23

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

You are on page 1/ 4

Medryte Healthcare Solutions Pvt.

,Ltd Normal

Access Management Process & Approval Matrix

Document
Responsibility: Selva Kumar 24-13708
No:

Department: IT & Networking Revision: 1.1

Date: 05-Aug-2024 Sheet: 1 of 4

Introduction
1. Purpose

This document outlines the access management process and approval

matrix for Medryte to ensure that access to company resources is
controlled, monitored, and aligned with security best practices.

2. Scope

This policy applies to all employees, contractors, and third parties

requiring access to Medryte’s systems, applications, and data.

3. Access Management Process

A. User Access Request

 Users must submit an Access Request Form through the Medryte IT

Service Desk or an authorized access request portal.

 The request must specify the system, data, or application needed,

along with a valid business justification.

B. Approval Workflow

 Access requests must be approved as per the Access Approval Matrix

(see below).

 Approvals must be documented and logged for audit purposes.

C. User Authentication & Authorization

 All users must have unique login credentials with strong password
policies.

 Role-Based Access Control (RBAC) must be enforced, ensuring users

only have the minimum necessary access.

D. Access Review & Revocation

 Access rights must be reviewed quarterly by department heads and IT

Security.

 Accounts must be disabled or removed immediately upon employee

exit or role change.

 Privileged access accounts must be subject to stricter monitoring and

periodic re-approval.

E. Emergency Access & Exception Handling

 Temporary access for emergency situations requires approval from

senior management and IT Security.

 Emergency access logs must be reviewed post-event.

4. Access Approval Matrix

Requested Final
Access Type Approved By
By Authorization

General System Access Employee Department Head IT Security

Administrative Access IT Staff IT Manager Director

HR System Access HR Employee HR Manager Director

Vendor Department Head &

External Vendor Access Director
Sponsor IT Sec

Emergency Privileged
IT Admin Director & IT Security MD
Access

5. Compliance & Monitoring

 All access requests and approvals must be logged and auditable.

 Periodic access audits will be conducted to ensure compliance with

Medryte security policies.

 Violations of this policy may result in disciplinary action, including

revocation of access privileges.

6. Review & Updates This document will be reviewed annually to align with
Medryte’s evolving security requirements.

Document Version History

This table shows a record of significant changes to the document.
Versio Date Author Description of Change
n
05-Aug-
1.0 Selva Kumar Initial release
2023

02-Aug-
1.1 Selva Kumar Version Update
2024

APPROVALS

This table shows the approvals on this document for circulation, use, and
withdrawal.
Versio Date Approver Title/ Approval Remarks
n Authority
1.0 07-Aug- Mr.Sujin Jekash Simson MD Verified
2023
1.1 05-Augr- Mr.Sujin Jekash Simson MD Verified
2024

Approval & Acknowledgment I acknowledge that I have read and

understood the Medryte Access Management Process and Approval Matrix
and agree to comply with its guidelines.

Employee Signature: __________________________

Date: ___________________________

Privilege Access Policy
No ratings yet
Privilege Access Policy
4 pages
Access Policy for IT Professionals
No ratings yet
Access Policy for IT Professionals
3 pages
Access Management Policy
No ratings yet
Access Management Policy
17 pages
Techfusion Access Management Policy
No ratings yet
Techfusion Access Management Policy
3 pages
Access Management v1
No ratings yet
Access Management v1
6 pages
Access Management Process Guide
No ratings yet
Access Management Process Guide
3 pages
Access Control Policy Template
No ratings yet
Access Control Policy Template
4 pages
3 - Access Control Management Job Aid
No ratings yet
3 - Access Control Management Job Aid
12 pages
Data Access and User Authentication Policy
No ratings yet
Data Access and User Authentication Policy
3 pages
P3 - Access Control Policy
No ratings yet
P3 - Access Control Policy
3 pages
Access Management Policy and Procedure
100% (4)
Access Management Policy and Procedure
44 pages
Access Management Policy Template
No ratings yet
Access Management Policy Template
8 pages
Access Control Policy
No ratings yet
Access Control Policy
2 pages
ISPolicy 030
No ratings yet
ISPolicy 030
10 pages
Access Control Policy Template
100% (3)
Access Control Policy Template
6 pages
Itil Day 3
No ratings yet
Itil Day 3
4 pages
Access Management Policy April2025
No ratings yet
Access Management Policy April2025
3 pages
Accessmanagement
No ratings yet
Accessmanagement
6 pages
Access Control Policy Design
No ratings yet
Access Control Policy Design
15 pages
Access Control Policy 1.0
No ratings yet
Access Control Policy 1.0
9 pages
Iam QB 6marks
No ratings yet
Iam QB 6marks
11 pages
Access Control Polic1
No ratings yet
Access Control Polic1
7 pages
New Employee Document Checklist
No ratings yet
New Employee Document Checklist
21 pages
Breach Notification Process
No ratings yet
Breach Notification Process
4 pages
Sample - Access Control Policy v1.0
No ratings yet
Sample - Access Control Policy v1.0
8 pages
Access Request Approval Form
No ratings yet
Access Request Approval Form
1 page
Data Security Policy Template
100% (1)
Data Security Policy Template
12 pages
IT Access Control Guidelines
No ratings yet
IT Access Control Guidelines
3 pages
Itgcs Uam
No ratings yet
Itgcs Uam
28 pages
03 PhysicalAccessControl and Policy
No ratings yet
03 PhysicalAccessControl and Policy
16 pages
OUR Ompany AME Ccess Ontrol Assword Olicy: (Y C N) A C & P P
No ratings yet
OUR Ompany AME Ccess Ontrol Assword Olicy: (Y C N) A C & P P
12 pages
Health Insurance Portability and Accountability Act (HIPAA) : HIPAA Requirements Solution Practical Application
No ratings yet
Health Insurance Portability and Accountability Act (HIPAA) : HIPAA Requirements Solution Practical Application
5 pages
Access Request Form
No ratings yet
Access Request Form
2 pages
Mwaa Security Assessment Questionnaire: Topic Security Issue Response
No ratings yet
Mwaa Security Assessment Questionnaire: Topic Security Issue Response
4 pages
BETC - Security - Learning Outcome 4 5
No ratings yet
BETC - Security - Learning Outcome 4 5
34 pages
SOP For SAP User ID and Access
No ratings yet
SOP For SAP User ID and Access
4 pages
Access Management HS2016
100% (2)
Access Management HS2016
47 pages
Data Protection Policy Template
No ratings yet
Data Protection Policy Template
12 pages
SCCRF Policy 2.1
No ratings yet
SCCRF Policy 2.1
12 pages
User Access Policy
No ratings yet
User Access Policy
2 pages
HIPAA Incident Breach Investigation
No ratings yet
HIPAA Incident Breach Investigation
10 pages
IAM Essentials for IT Professionals
No ratings yet
IAM Essentials for IT Professionals
6 pages
Access Control in Security
No ratings yet
Access Control in Security
10 pages
HR/Admin System User Guide
No ratings yet
HR/Admin System User Guide
9 pages
5 15+Access+Control+Policy
No ratings yet
5 15+Access+Control+Policy
2 pages
2.IT Policies - Access Privilege Policy
No ratings yet
2.IT Policies - Access Privilege Policy
10 pages
Confidintial Agreement
No ratings yet
Confidintial Agreement
1 page
HMIS Security Audit Checklist 051210
No ratings yet
HMIS Security Audit Checklist 051210
5 pages
Privacy, Confidentiality, Security
No ratings yet
Privacy, Confidentiality, Security
13 pages
Change of Access Status Policy
No ratings yet
Change of Access Status Policy
3 pages
IT Access Control Policy
No ratings yet
IT Access Control Policy
8 pages
Chapter 11 - Implement Policy and Mitigate Risk
No ratings yet
Chapter 11 - Implement Policy and Mitigate Risk
57 pages
P2 - Acceptable Use Policy
No ratings yet
P2 - Acceptable Use Policy
4 pages
User Access Management
No ratings yet
User Access Management
10 pages
Access Control
No ratings yet
Access Control
11 pages
Access Requests
No ratings yet
Access Requests
4 pages
Eligibility Form
No ratings yet
Eligibility Form
1 page
Accenture Password Managers
No ratings yet
Accenture Password Managers
2 pages
Form For Rental House
No ratings yet
Form For Rental House
2 pages
881053278006296
No ratings yet
881053278006296
2 pages
TTDC Online-Tamilnadu Tourism Development - Online Reservation Ticket
No ratings yet
TTDC Online-Tamilnadu Tourism Development - Online Reservation Ticket
1 page
Jagdamba Enterprises - B
No ratings yet
Jagdamba Enterprises - B
2 pages
Generic Data Center and Network Operations Workplan
No ratings yet
Generic Data Center and Network Operations Workplan
55 pages
Taekwondo
No ratings yet
Taekwondo
8 pages
Investigative Review 2015-0006 Palm Tran Connection
No ratings yet
Investigative Review 2015-0006 Palm Tran Connection
103 pages
Priti Prabhakar Wakodikar and Bhushan Mankar
0% (1)
Priti Prabhakar Wakodikar and Bhushan Mankar
9 pages
03 SDD Solution Design Document
No ratings yet
03 SDD Solution Design Document
32 pages
Municipal Cyber Security Guidelines
No ratings yet
Municipal Cyber Security Guidelines
14 pages
Adm Private Degp CC
No ratings yet
Adm Private Degp CC
4 pages
IP178-EN Identification Document Update-Unlocked
No ratings yet
IP178-EN Identification Document Update-Unlocked
1 page
20.1 Identity, Access, and Security
100% (2)
20.1 Identity, Access, and Security
33 pages
REVENUE COMPLAINTS Upto - 20091031
No ratings yet
REVENUE COMPLAINTS Upto - 20091031
57 pages
MCMC-MTSFB-TC-G009-2016 Requirements For Information N Network Security MCMC
No ratings yet
MCMC-MTSFB-TC-G009-2016 Requirements For Information N Network Security MCMC
23 pages
(Ijcst-V12i6p1) :rachana C R
No ratings yet
(Ijcst-V12i6p1) :rachana C R
4 pages
IT Audit Process Essentials 2002
50% (2)
IT Audit Process Essentials 2002
4 pages
Application Security Review Checklist
No ratings yet
Application Security Review Checklist
9 pages
EMV Tags Cheat Sheet Ankit
No ratings yet
EMV Tags Cheat Sheet Ankit
2 pages
Cccam Elzaim Iptv
No ratings yet
Cccam Elzaim Iptv
7 pages
2 - How To Activate New DepEd MS O365 Account
No ratings yet
2 - How To Activate New DepEd MS O365 Account
18 pages
Online Application Registration System
No ratings yet
Online Application Registration System
2 pages
Bank Locker Security System Based On Two-Factor Authentication Project Report by S.sutharshan
70% (20)
Bank Locker Security System Based On Two-Factor Authentication Project Report by S.sutharshan
172 pages
ISO 27001 Evidence Collection Spreadsheet - Secureframe
No ratings yet
ISO 27001 Evidence Collection Spreadsheet - Secureframe
3 pages
Workplace Safety and Security Management by The Commandant of NSCDC
No ratings yet
Workplace Safety and Security Management by The Commandant of NSCDC
7 pages
Pravasi ID Soft
No ratings yet
Pravasi ID Soft
1 page

Access Management Process

Uploaded by

Access Management Process

Uploaded by

Medryte Healthcare Solutions Pvt.

Access Management Process & Approval Matrix

Department: IT & Networking Revision: 1.1

Date: 05-Aug-2024 Sheet: 1 of 4

This document outlines the access management process and approval

This policy applies to all employees, contractors, and third parties

3. Access Management Process

A. User Access Request

 Users must submit an Access Request Form through the Medryte IT

 The request must specify the system, data, or application needed,

 Access requests must be approved as per the Access Approval Matrix

 Approvals must be documented and logged for audit purposes.

 Role-Based Access Control (RBAC) must be enforced, ensuring users

D. Access Review & Revocation

 Access rights must be reviewed quarterly by department heads and IT

 Accounts must be disabled or removed immediately upon employee

 Privileged access accounts must be subject to stricter monitoring and

E. Emergency Access & Exception Handling

 Temporary access for emergency situations requires approval from

 Emergency access logs must be reviewed post-event.

General System Access Employee Department Head IT Security

Administrative Access IT Staff IT Manager Director

HR System Access HR Employee HR Manager Director

Vendor Department Head &

5. Compliance & Monitoring

 All access requests and approvals must be logged and auditable.

 Periodic access audits will be conducted to ensure compliance with

 Violations of this policy may result in disciplinary action, including

Document Version History

Approval & Acknowledgment I acknowledge that I have read and

Employee Signature: __________________________

You might also like