I have taksed to define the access rights for sys admins for a HR/Payroll system. The thoughts are divided among the groups here - one, the segretion of duties that should limit any type of user to perform tasks end to end since this is a payroll system; two since it is a sys admin access the user should have full access to manage and maintian the system effectively such as trouble shooting and supporting.
My question is what is the right approach. Personally I feel the sys admins should have full access, however I need hard convincing to do. Can Bill 198 shed some light on this? How do I pitch it to senior management?
Any help from IT security/compliance/bill 198 experts or anyone who had a similar situation would be GREATLY appreciated.
August 10, 2010 2:05 PM
August 23, 2010 9:55 PM