Search the Platform
Review of Access Rights for ISO 27001:2013
This free Review of Access Rights template can be adapted to manage information security risks and meet requirements of control A.9 of ISO 27001:2013.
The standard is very clear on requiring periodic review of access rights. This can be difficult to manage, however implementing gate keepers or system owners can help.