IAM Lifecycle Management MVP

1. Review  list of Priority SaaS Apps to ensure list is up to date and current and ensure the IAM Standards and Guidelines are aligned with the current list.
2. Review quarterly the existing privileged access roles to ensure they align with existing standards and guidelines and update as required.
3. Review quarterly existing users in privileged roles to ensure the following
   1. Users are still employed by company
   2. User’s job role remains applicable to privileged access and that access rights are based on the “need to know” and “least privilege” principles
4. Every Month, review audit logs of the activities of users with privileged access to verify that access has only utilized as necessary for performing Company duties.
5. Ensure privileged list of SaaS apps continue to be integrated with current SSO (Okta) and update as required.
6. Ensure privileged roles continue to meet IAM Standards and Guidelines (MFA or FIDO) and update as required.
7. Ensure all users with privileged access have read and Signed the acceptance memo.