This operator surface turns raw access-review exports into a buyer-readable control plane for identity governance teams: overdue closeouts, self-reviews, auto-approvals, stale app assignments, and the remediation packet needed before the next audit window closes.
| Risk | Owner | Principal | Resource | Message |
|---|---|---|---|---|
| high privileged-role-auto-approved |
Okta Governance | bob@kgtenant.example | Security Administrator | Admin-role decision approved with no recorded reviewer (likely auto-approval). |
| high reviewer-self-review |
Okta Governance | carol@kgtenant.example | Help Desk Administrator | Reviewer Carol Helpdesk approved or denied their own access. |
| medium instance-overdue |
Okta Governance | — | — | Access-review campaign closed 14 day(s) ago and still InProgress. |
| medium stale-decision |
Identity Operations | dave.vendor@example.net | Finance BI | Decision reviewed 70 day(s) ago but never applied. |
| medium decision-overdue |
Identity Operations | farrah.partner@example.org | Embedded Insights Portal | Decision pending for Farrah Guest on Embedded Insights Portal. |
| info high-risk-principal |
Okta Governance | alice@kgtenant.example | Super Administrator | Privileged assignment under review (Super Administrator). |
| info high-risk-principal |
Okta Governance | bob@kgtenant.example | Security Administrator | Privileged assignment under review (Security Administrator). |
| info high-risk-principal |
Okta Governance | carol@kgtenant.example | Help Desk Administrator | Privileged assignment under review (Help Desk Administrator). |
| info high-risk-principal |
Platform Security | gina@kgtenant.example | Organization Administrator | Privileged assignment under review (Organization Administrator). |