Platform Security Q4 Access Review - Datadog [DUE December 16 2024]

[kell-y]

Access Review Description:

OCTO-DE teams are responsible for periodically reviewing access to systems and applications they manage to ensure that only authorized personnel have the required access and permissions.

OCTO-DE teams periodically review user access to ensure that access is limited to users who currently need to access the systems and applications and that those users have the appropriate permissions.

Platform Security initiates each review cycle and application owners are responsible for executing the process for each application that they own. Once complete, application owners document the results of the access review and send the artifacts to Platform Security to document in eMASS as evidence.

Tasks:

The Q4 access reviews should track any users that were removed or changed outside of normal offboarding processes since the last access review completed in September 2024.

Note: For Datadog, we are only analyzing elevated privileges (read access or standard roles only)

• Remove any users that should no longer have access to the systems or applications. Results must include a list of user access that was changed and why.
• Cross reference an individual in DataDog that has the read access and cross referencing with request in support role
• Ensure that existing users have the correct permissions.
• Ensure that every system has at least two administrators, and that any system which is expected to persist even if administration transitions to a new contractor has at least one administrator who is a government employee.
• Document the results of the review using the linked template: Datadog.

AC:

• Notify Platform Security that the access reviews are complete.

Resources:
Below are three links that describe the access review process:

• Access Review Process
• Access Review Rollout Plan - First Iteration
• Access Review Inventory