I work for a bank and Audit is concerned that we do not have a good handle on when Atlassian Reps access our system.
I was wondering if there is any documentation that explains how vendor access works?
I need to find a way to show audit that we can track when Atlassian access our site and also have a trail revoking their access.
We have been referencing the Admin Audit Log and it does not appear to be consistent and does not show that the atlassian reps removed their access only that they added themseolves.
I believe the specific section you want is here: https://www.atlassian.com/trust/security/security-practices#support-access
Though you might want to point your Audit team to the root of:
If they have other questions around security, data residency, privacy, etc.
I hope that helps!
Based on your valuable feedback, we have released several new features to help you gain administrative flexibility with authentication policies, visibility into shadow IT with automatic product disco...
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events