Episode 10
Rollout
In this episode we do the final adjustments to roll things out and teach you how to operate your environment
Introduction
In this phase, you will perform the final adjustments on your implementation and roll out the system to other teams in your company. We will also discuss how these modules must be operated daily, remember all we have done so far is implementation.
Phase Instructions:
- Click on the left panel the use case you chose. Complete all learning and only after finishing reading, start completing tasks.
Risk Management
Required Learning:
- Asset Management course
- Risk Management course
- Policy Management course
- Internal Controls course
- Project Management course
- Exception Management. course
Tasks:
- Define an Access Matrix that tells you what access each department needs
- Create groups and their access lists as needed
- Test permissions using your dummy account
- Create accounts (typically a couple of user accounts are enough) for every department group you identified in the Access Management phase. Assign groups as needed.
You will need to keep the following items updated to reflect the reality of your program, the following tasks will need to be regularly performed:
- Review Risks
- Review Assets
- Review Policies
- Audit Internal Controls
- Review Exceptions
- Update Projects and their Tasks
Compliance Management
Required Learning:
- Policy Management course
- Internal Controls course
- Project Management course
- Exception Management. course
Tasks:
- Define an Access Matrix that tells you what access each department needs
- Create groups and their access lists as needed
- Test permissions using your dummy account
- Create accounts (typically a couple of user accounts are enough) for every department group you identified in the Access Management phase. Assign groups as needed.
You will need to keep the following items updated to reflect the reality of your program:
Data Privacy
Required Learning:
- Asset Management course
- Risk Management course
- Policy Management course
- Internal Controls course
- Project Management course
- Exception Management. course
Tasks:
- Define an Access Matrix that tells you what access each department needs
- Create groups and their access lists as needed
- Test permissions using your dummy account
- Create accounts (typically a couple of user accounts are enough) for every department group you identified in the Access Management phase. Assign groups as needed.
You will need to keep the following items updated to reflect the reality of your program:
Online Assessments
Required Learning:
- Online Assessment course
- Access Management course
Final Authentication Tasks:
- If you have not defined authentication for your main portal already, decide the authentication you would like to use from now on with your OAs. This is not needed if you are using non-authenticated OAs.
- If needed, create LDAP, SAML or Google OAuth connector if you need remote authentication, define it as the main authenticating method for the Main portal (your OA portal will inherit this authentication). This is not needed if you are using non-authenticated OAs.
Every time you need to send an OA:
- Based on your OA strategy decide who needs user accounts in eramba.
- Create accounts and assign them to the groups from the previous steps, bear in mind these accounts need special privileges
- Create related entities as needed (Third Parties for example)
- Create OAs as necessary and assign the accounts and related entities from the previous steps.
- Start OAs so feedback can be collected from the Recipient, based on your automation rules you might automatically send emails to these recipients or not.
- When submitted or as feedback is being submitted, review feedback and lock their answers
- Once all feedback has been locked, update the OA with the result.
- Optionally, you can record findings into the OA module to track down corrective measures
Awareness Programs
Before you attempt the following tasks, please make sure you complete the following courses: Awareness Programs
- Define who needs accounts based on your Awareness Programs and the groups you created during the Access Management phase
- Create accounts for these people, bear in mind these accounts need special privileges (in particular on the portals they are allowed). These accounts must belong to the groups you used at the time of creating your Awareness Programs. You can create accounts one by one, with CSV imports or LDAP Sync. If you are starting with an awareness program we recommend using a small number of accounts until you feel comfortable.
- Start your Awareness Programs
- Monitor awareness compliance
Playlist
- Episode 1The Journey2 mins left
- Episode 2Phases2 mins left
- Episode 3Use Cases3 mins left
- Episode 4Installation or SaaS0 mins left
- Episode 5Access Management5 mins left
- Episode 6Customization5 mins left
- Episode 7Data Entry3 mins left
- Episode 8Reporting1 min left
- Episode 9Automation1 min left
- Episode 10Rollout4 mins left