Without appropriate access management controls, businesses are at significant risk from the loss or theft of both physical and digital assets. Access management controls establish who is allowed the appropriate level of access in order to do their jobs while reducing the potential for damage or harm to the company.

The purpose of this customizable policy, created by Scott Matteson for TechRepublic Premium, is to provide guidelines for appropriate management of access to company resources. It covers both physical and digital environments.

• Featured text from the download:

  Digital access

  Employees should only have the minimum access needed to do their jobs.

  Managers must request access as needed for existing and new employees.

  Managers must approve elevated access requests for employees.

  Administrator-level access to workstations and devices is allowable with appropriate business justification.

  Arrange access to files based on groups or departments, and use group-based permissions where possible. 

  Administrators should rely on “user-level” access when and where possible. Only use dedicated administrator or root-level access where needed. 

Enhance your IT operations and cybersecurity with our in-depth seven-page document. This is available for download at just $19. Alternatively, enjoy complimentary access with a Premium annual subscription.

TIME SAVED: Crafting this content required 14 hours of dedicated writing, editing, research, and design.