G
Gorka A.
When someone who owns ISMS items (like risks or evidences) leaves the company, it becomes a manual and error-prone process to identify and reassign everything they were responsible for. This recently led to a few non-conformities during our internal audit because certain risks ended up without an owner after the previous assignee was offboarded.
It would be great to have a feature that allows automatic reassignment of ownership upon user deactivation or removal, similar to how Google Workspace prompts for a successor when deleting an account. Even better would be:
  • The ability to assign ownership based on roles, so that responsibilities persist regardless of who fills a given role
  • A reassignment prompt when deactivating users, showing what ISMS items they’re responsible for and allowing bulk reassignment
  • Visibility into “orphaned” items with missing owners to prevent NCs
This would help us ensure continuity and keep our ISMS responsibilities clean and compliant during team transitions (which unfortunately happens at the worst time sometimes - like before the External Audit).
Created by Max Vogt