Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Celebration

Earn badges and make progress

You're on your way to the next level! Join the Kudos program to earn points and save your progress.

Deleted user Avatar
Deleted user

Level 1: Seed

25 / 150 points

Next: Root

Avatar

1 badge earned

Collect

Participate in fun challenges

Challenges come and go, but your rewards stay with you. Do more to earn more!

Challenges
Coins

Gift kudos to your peers

What goes around comes around! Share the love by gifting kudos to your peers.

Recognition
Ribbon

Rise up in the ranks

Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!

Leaderboard

Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Atlassian Community about banner
4,466,187
Community Members
 
Community Events
176
Community Groups

Best practices to secure human resources project from internal administrators

Please contribute your expertise and recommendations to secure Human Resources Jira Service Desk project.  So highly confidential issues such as compensation, dispute, etc are securely limited to certain HR team members only, especially from internal administrators, global or project.

Jira service desk issue security can limit to Reporter Only.   If administrator adds himself to view the issue, can in-erasable trace be kept or alarmed? 

In case of troubleshooting, the administrator has to have right to visit those issues.

Thanks!!

2 comments

@Bin Liang Typically, HR projects are restricted to specific, trusted individuals in the HR team + one OPS person.  Alternatively, the OPS person could be added on a case by case basis, i.e. when there's need for troubleshooting. These actions (project permission changes) are logged.

Logs can be aggregated to a central location for audit and review by the security team. In the case of Jira On-Prem/Server, a crafty system administrator could delete the log but that would be a sure sign of meddling and raise red flags for sure.

Like Dave Liao likes this

Thanks Trevan!  That makes sense.  So it sounds like this typical HR project permission set up can be done without issue security. Is it?

My pleasure, @Bin Liang 

Actually, you must use Issue Security or some other app to achieve this, in addition to project permissions.

Like Dave Liao likes this

I solved this with the instead new Structure.Gantt-Plugin and a custom hw aid discipline. This labored quite well about this page. What I could not remedy smoothly is that each undertaking requires each HR-resources and equipment in my use case and both need to be deliberate on the equal time.

Comment

Log in or Sign up to comment
TAGS

Atlassian Community Events