Explore the difference by clicking on the next step and switching the toggle
The compliance team will track all group and permission membership in a large spreadsheet.
The compliance team will meet with engineering leads every quarter to audit membership for groups and permissions.
If improper access is found, access must be manually revoked by the devops team.
By enforcing short-lived access, compliance teams can drastically reduce the number of systems to audit - saving weeks of work!
The compliance team can use Opal to start self-serve access reviews to resource owners with one centralized dashboard.
After completing the audit, the compliance team can automatically revoke improper access and Opal can generate an auditor-friendly PDF.
Start self-serve access reviews for resource and group owners.
Generate an auditor-friendly report after the review has been completed.
Continuously monitor access for employees that have left the company or changed departments.