Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Atlassian Community about banner
4,293,373
Community Members
 
Community Events
165
Community Groups

Best practices to secure human resources project from internal administrators

Please contribute your expertise and recommendations to secure Human Resources Jira Service Desk project.  So highly confidential issues such as compensation, dispute, etc are securely limited to certain HR team members only, especially from internal administrators, global or project.

Jira service desk issue security can limit to Reporter Only.   If administrator adds himself to view the issue, can in-erasable trace be kept or alarmed? 

In case of troubleshooting, the administrator has to have right to visit those issues.

Thanks!!

2 comments

@Bin Liang Typically, HR projects are restricted to specific, trusted individuals in the HR team + one OPS person.  Alternatively, the OPS person could be added on a case by case basis, i.e. when there's need for troubleshooting. These actions (project permission changes) are logged.

Logs can be aggregated to a central location for audit and review by the security team. In the case of Jira On-Prem/Server, a crafty system administrator could delete the log but that would be a sure sign of meddling and raise red flags for sure.

Like Dave Liao likes this

Thanks Trevan!  That makes sense.  So it sounds like this typical HR project permission set up can be done without issue security. Is it?

My pleasure, @Bin Liang 

Actually, you must use Issue Security or some other app to achieve this, in addition to project permissions.

Like Dave Liao likes this

I solved this with the instead new Structure.Gantt-Plugin and a custom hw aid discipline. This labored quite well about this page. What I could not remedy smoothly is that each undertaking requires each HR-resources and equipment in my use case and both need to be deliberate on the equal time.

Comment

Log in or Sign up to comment
TAGS
Community showcase
Posted in Jira Service Management

Jira Service Management Documentation Opportunities

Hello everyone, Hope everyone is safe! A few months ago we posted an article sharing all the new articles and documentation that we, the AMER Jira Service Management team created. As mentioned ...

165 views 0 4
Join discussion

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you