Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Corporate policy requires accounts to be deactivated after X days of inactivity

Many companies have defined policies that require IT to deactivate user accounts that have been inactive for a certain number of days. A common way of solving this is to manually go through the user list at admin.atlassian.com at a fixed date every month and disable the users that have not been active for X days.

Automated User Cleanup & Deactivation allows you to configure automatic cleanup jobs that deactive users as soon as they have been inactive for more than X days. The app has support for multiple schedules, allowing to have different rules for different categories of users - for example 30 days for internal employees and 2 days for external consultants.

 

...

Users are created locally at each department in my company and central IT needs a tool to initiate conversations with department managers about license needs

We have learned from our customers that a common headache for IT Managers in fast-growing companies is that some product accesses are assigned by default when a new hire joins the company even in cases where the role does not require the software. The IT Managers that have co-developed this app with us have been looking for a tool that could provide them with facts to initiate conversations with department managers about licences that do not appear to have a legitimate business need.

...

An industry regulator requires my company to provide detailed logs to prove that there is a business reason for all our user accounts

From January 2025, companies in the Financial Sector across the European Union will be impacted by the Digital Operations Resilience Act (DORA). DORA is designed to make the financial ecosystem in Europe more resilient in the event of adverse digital attacks.

Article 9 in DORA states that financial entities are required to:

  • ”implement policies that limit the physical or logical access to information assets and ICT assets to what is required for legitimate and approved functions and activities only, and establish to that end a set of policies, procedures and controls that address access rights and ensure a sound administration thereof”

For financial entities that use Jira to drive business critical processes Automated User Cleanup & Deactivation for Jira Cloud is designed to support the organisation in fulfilling Article 9.

  • Instant vizualisation of user activity:

  • Configurable automatic scheduling of cleanup jobs:

  • Detailed logs of last user activity:

  • Detailed logs of fulfilled cleanup jobs:

Our company wants to use Jira for collaborative projects with external companies but we hesitate because we do not have structured processes for external user offboarding

Many fast-growing scale-ups do not have the resources to have a large internal IT organisation. Without good support for automation, this sometimes lead to sub-optimal policys like in the example of a fast-growing Nordic software company that decided not to let external partners get access to the company’s Jira since the lean internal IT team was too small to handle the manual task of administrating external users. For the fast-growing scale-up, completely dependent on customer-driven development organised as co-creative innovation projects with customers interacting with software developers daily to give feedback on features and prioritization, this policy slowed down the business unnecessarily.