This operator surface turns raw access-review exports into a buyer-readable control plane for identity governance teams: overdue closeouts, self-reviews, auto-approvals, stale app assignments, and the remediation packet needed before the next audit window closes.
| Review | Owner | Status | Open | Privileged | Next action |
|---|---|---|---|---|---|
| Okta admin roles Q2 closeout Admin roles · core tenant Quarterly cadence · closes 2026-05-15 |
Okta Governance | InProgress | 1 | 3 | Escalate open Super Admin decision and require dual-control for admin-role closeout. Admin review still shows a self-review and an approval with no reviewer evidence. |
| External users and app assignments External users + app assignments Monthly cadence · closes 2026-05-10 |
Identity Operations | Completed | 1 | 0 | Close stale app assignments and guest review gaps before the next export packet. Guest and app-assignment reviews need better notification and application proof. |
| Break-glass admins and privileged groups Break-glass admins + privileged groups Monthly cadence · closes 2026-05-28 |
Platform Security | Auto-Reviewed | 0 | 1 | Validate reviewer independence and archive clean evidence for the next audit run. This lane is the healthiest posture, but it still needs evidence packaging. |