Skip to main content

4.1 Access Request & Account Management SOP

CRITICAL: All procedures in this section must be documented in devsecops@bontonsoftwares.in.
AWS Account Access Requests
1. Request must be sent to devsecops@bontonsoftwares.in with subject: [AWS Access Request] - [Project Name] - [Requester Name]
2. Include: User details, Required access level, Project name, Business justification, Manager approval
3. DevSecOps validates request within 8 business hours
4. IAM policy created following least-privilege principle
5. Access credentials shared securely
6. Access documented in access control matrix
7. Quarterly access review conducted
Email Account Provisioning

1. Request sent to hr@bontonsoftwares.in, devsecops@bontonsoftwares.in
2. Include: Full name, Designation, Department, Reporting manager
3. Manager approval required
4. Account created within 4 business hours
5. Security policies applied (MFA, password requirements)
6. User notified with setup instructions
7. Account documented in email management system

 

Internal Tool Access

1. Submit request via devsecops@bontonsoftwares.in
2. Specify tool name and required access level
3. Manager approval mandatory
4. DevSecOps provisions access per role-based permissions
5. User training provided if required
6. Access review every 6 months

 

Access Revocation

Upon employee exit or role change:
1. HR notifies devsecops@bontonsoftwares.in
2. All system access revoked within 2 hours
3. Data backup/transfer completed if needed
4. Access removal documented
5. Manager confirmation required

Back to top