Joiners, Movers and Leavers (JML) process
The Joiners, Movers and Leavers (JML) process manages the lifecycle of user access within an organisation. It ensures that access rights are appropriately granted, modified, and revoked as employees join, move within, or leave an organisation. Typical controls include: Access Request and Approval: Ensuring that access requests are properly authorised by relevant managers or system owners. Role-Based Access Control (RBAC): Assigning access based on the user’s role within the organisation to enforce the principle of least privilege. Periodic Access Reviews: Regularly reviewing user access rights to ensure they are still appropriate. Automated Provisioning and De-provisioning: Using automated tools to grant and revoke access promptly as users join, move, or leave the organisation. Audit Logging and Monitoring: Keeping detailed logs of access changes and monitoring for any unauthorised access attempts. Segregation of Duties: Ensuring that critical tasks are divided among multiple users to prevent fraud and errors. Further reading What are Joiners-Movers-Leavers (JML)? - BeyondTrust