1. Policy Statement

This User Access Management (UAM) Policy outlines the principles and procedures governing the management of user access to Wave Talent’s (”the Organisation”) information systems, applications, and data. The policy ensures that access is granted, modified, and revoked in a secure and controlled manner, based on clearly defined roles and responsibilities. The policy also addresses the need for segregation of duties to prevent conflicts of interest.

2. Accountabilities and Responsibilities

a. Chief Information Officer (CIO):

• Accountable for the overall UAM strategy and compliance.
• Ensures that UAM policies and procedures are documented and communicated.

b. IT Security Manager:

• Accountable for enforcing UAM policies and procedures.
• Manages the UAM team and coordinates access-related activities.
• Ensures regular security audits and compliance assessments.

c. Human Resources (HR) Department:

• Accountable for notifying IT of staff joiners, leavers, and changes in job roles.
• Provides HR data to support access provisioning and de-provisioning.

d. Departmental Managers:

• Accountable for defining access requirements for their teams.
• Approves access requests and changes within their department.