last sync: 2024-May-24 18:03:04 UTC

Microsoft Managed Control 1524 - Personnel Transfer | Regulatory Compliance - Personnel Security

Azure BuiltIn Policy definition

Source Azure Portal
Display name Microsoft Managed Control 1524 - Personnel Transfer
Id 72f1cb4e-2439-4fe8-88ea-b8671ce3c268
Version 1.0.0
Details on versioning
Category Regulatory Compliance
Microsoft Learn
Description Microsoft implements this Personnel Security control
Additional metadata Name/Id: ACF1524 / Microsoft Managed Control 1524
Category: Personnel Security
Title: Personnel Transfer - Modifying Access Authorization
Ownership: Customer, Microsoft
Description: The organization: Modifies access authorization as needed to correspond with any changes in operational need due to reassignment or transfer; and
Requirements: Microsoft HR ensures personnel transfer is handled appropriately. Microsoft implements personnel transfer using the Manager Self Service Tool, which is managed by Microsoft Headcount Operations. When personnel transfer to new positions with new reporting structures, the Manager Self Service Tool transfer transaction is keyed into the HR system by the individual’s manager, group administrator, or equivalent personnel with work-on-behalf privileges. Once the transfer has populated in the downstream tools and applications, access to data is reassigned based on the new role and scope within twenty-four (24) hours of transfer. Access to buildings/rooms/websites can be requested by the transferred individual’s manager.
Mode Indexed
Type Static
Preview False
Deprecated False
Effect Fixed
audit
RBAC role(s) none
Rule aliases none
Rule resource types IF (2)
Microsoft.Resources/subscriptions
Microsoft.Resources/subscriptions/resourceGroups
Compliance Not a Compliance control
Initiatives usage none
History none
JSON compare n/a
JSON
api-version=2021-06-01
EPAC