User Access Revocation

IT

Before: Every day at 05:00 PM, an employee in the information security department at a fintech startup checked the HR application system for dismissed employees and employees on leave, and temporarily blocked or permanently revoked their access to all systems as needed. This process was not automated, leading to instances of employee accounts not being blocked or not being blocked timely, as detected by independent auditors.

 

Now: An RPA bot automatically blocks accounts in all company systems at 05:00 PM in accordance with the access management matrix, and then sends a notification to the information security manager via email.