Security Sign Offs

Services

What are the Security Signs Offs and why are they important?

The Security Signs Offs are an annual review of user access to Harvard’s Financial Systems that is required by University Internal Controls policy. The Sign Offs are critical to:

  1. Ensure that only appropriate individuals within a department can access confidential information, and
  2. Document our system of review as required for proper internal controls.

Who can sign off?

As a Department Administrator, you have the responsibility and a special role to review and sign off on the accuracy of the Security Reports. If the Department Administrator is not available during the Sign Off period, an alternate reviewer needs to be assigned.

Where do I go to sign off?

Log in to the reporting application FINReport. If connecting remotely, sign in via VPN.

Which reports do I sign off on?

  1.  Central and FAS Security Roles
  2.  Corporate, Pcard, Department Card Holders
  3.  GMAS Security Roles
  4.  PeopleSoft Roles and Departments
  5.  Primary and Secondary TL Group Approvers

How do I review people’s access?

  1. Run the Security Reports
  2. Check the roles and permissions for all the people in your department
  3. If any changes need to be made, send an email to appsec@fas.harvard that includes:
    1. Changes that need to be made (no security report attached), or
    2. Print out the security reports, mark up the changes, scan the marked up report, and send the scanned copy to AppSec.

Do I need to send a form to request changes?

You only need to send in a form if you’re requesting access for:

  1.  Someone who is new to the department (either transferred from another department or a new employee), or
  2.  if you’re adding a new application to an existing user’s access. Please note: New users may require training for new application access
  3.  For PCard and Corporate Card changes, please contact Josh Dunn at dunn@fas.harvard.edu

How can I see what I’ve signed off on?

Check the Sign off Status Dashboard tab in FINReport to see the status of your sign offs.

Do I have to wait for the changes I requested to be made before I can sign off?

No. You can sign off immediately once you’ve submitted your changes to AppSec.

More Information

Attachments