The alignment of user access rights with business requirements is most effectively achieved throughsystem design. During the design phase, systems are architected to incorporate role-based access controls, least privilege principles, and segregation of duties based on business needs. While data classification and architecture support information management, and maturity models help assess governance capability,system design operationalizes access controls directly in alignment with enterprise roles and responsibilities.
This is supported byCOBIT principlesthat emphasize embedding governance requirements into system design and implementation to ensure alignment, value delivery, and risk mitigation.
[Reference:, CGEIT Review Manual (based on domain knowledge from Governance of Enterprise IT and COBIT design factors)., COBIT 2019 Design Guide: Aligning Governance System Components., , , , ]
Submit