The University Data Management Regulation requires each campus dean and vice chancellor to review and certify on an annual basis their staff’s security access to each of these enterprise systems: Student Information System (SIS), Human Resources and Financial. Due to the impact of COVID-19, the review and certification are being combined for all three systems this year.
Your review and certification of user access to the systems are critical to ensure the safeguarding of university data against unauthorized use, disclosure or modification, damage, or loss. As a dean or vice chancellor, you have primary responsibility to determine the appropriate degree of security access for your employees and to ensure their compliance with access security standards.
To review your staff’s security access to the SIS, HR or Financial systems, use the Web Security Report and the Web Security Exceptions Report in the MyPack Portal:
To access both reports in the MyPack Portal:
- Click on the NavBar compass icon (upper right corner).
- Select Identity Management.
- Select Security Access/SAR.
- Select the Security Report-Dept-6-digit or Security Report-Unit 4-digit OUC level.
The security report now shows both active and inactive employees who are currently assigned to a specific department and have access to the systems.
- Select Security Exceptions Report.
This security exceptions report displays individuals who have security access to your department and have either transferred to another department or have left the university.
- Select the Security Report-Dept-6-digit or Security Report-Unit 4-digit OUC level.
Changes or deletions that need to be made to the employee’s access profiles for the SIS, HR or Financial systems should be entered using the SAR application in the MyPack Portal.
To access the SAR application:
- Click on the NavBar compass icon (upper right corner).
- Select Identity Management.
- Select Security Access/SAR and then SAR.
For an individual who is no longer in your department, contact the individual’s new department to request changes to or the removal of the access. Department contacts can be found using the SAR Approver Lookup link at the bottom of any SAR page.
Once you have reviewed the security access for your staff and submitted the appropriate changes, certify your review by completing this electronic form and submitting it to the Office of Information Technology (OIT) Security and Compliance unit by Friday, Oct. 23.
If you have any questions or concerns, contact the NC State Help Desk via the NC State IT Service Portal or at 919.515.HELP (4357).