Data Protection Program – Technology Oversight & Coordination – Saudi Aramco

Additional Info

CompanyTechnology Oversight & Coordination - Saudi Aramco
Websitehttps://www.aramco.com
Company size (employees)500 to 999
Headquarters RegionMiddle East

Overview

Access Control practices are carried out to ensure a selective restriction of access to information and information assets on the basis of business justification and security requirements. Access rights are reviewed on a regular basis and justified as appropriate on the basis of changing business needs and requirements.

How we are different

- Access Reviews are carried out using the Access Review Checklist to make sure that logical access to information is controlled on the basis of business requirements.
- Corrective and Preventive Action will be used to log all the problems that may arise through Access Reviews and appropriate corrective and preventive actions will be taken.
- Periodic Reviews should be planned periodically to review the access management activities which include logical access Active Directory, SAP system and IT Managed Systems such as Shared Folder.