A.5.18 — Access rights
This control ensures access rights are regularly reviewed and managed to align with roles and responsibilities. Measures include periodic audits, access revocation, and automated access management.
| Property | Value |
|---|---|
| Section | process |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-ACCESS-01 | Multi-Tenant Isolation |
| SID-ACCESS-04 | SPOCP Policy-Based Query Authorization |
Source: ISO/IEC 27001:2022 Annex A