A question that often comes up is where do I send this SARF next?
A SARF must go through an approval process, which looks a lot like this:
|1 - Initiation||The Person who initiates the SARF Request must choose New SARF from the main menu, and enter the system and permissions required for the employee. The specified MPP will automically fill in as the recipient.|
|2 - MPP Approval||Next the MPP for this employee will receive an email and must approve the access requested. The auto-suggested recipient will be the eSARF Administrator.|
|3 - eSARF Admin Approval||The eSARF Administrator must validate the appropriate MPP has approved and verify proper required training has been completed before the SARF can continue. When in doubt, send your SARF here. Our current eSARF Admin is ().|
|4 - Data Steward Approval||Each system has a designated Data Steward that must approve access to the systems they govern access to.|
|5 - ISO Approval||The Information Security Officer (ISO) is the final gatekeeper of the SARF approval process. Once approved, it will move on to account creation and/or modification.|
|6 - Account Steward||Account Stewards are responsible for creating, modifying and deleting accounts and permissions.|
Note: even when the eSARF system may automatically "suggest" a next recipient,|
the system is flexible. You may change the recipient listed if you need to
specify someone else to approve any particular SARF.