800.2 - Request for Security Access - North Carolina Financial System (NCFS)

Policy Area:  Systems Security
Policy Sub Area:  Security
Authority:  G. S. § 143B-426.39 (1)
Effective Date:  August 15, 2023
Last Revision Date:  New Policy
Policy Owner/Division:  NCFS Security

Policy

It is the policy of the Office of the State Controller (OSC) to ensure that every person accessing the North Carolina Financial System (NCFS), have the proper training and be authorized by their Agency Security Administrator.

A Security Request to create or change employee security access to the North Carolina Financial System (NCFS) must be submitted to OSC for approval by the Agency Security Administrator. After submitting the Security Request, employees must complete all required OSC training courses before the security role can be granted. 

The OSC Security team will verify training completion before approving the requested security role. Please note that any requests for approval prior to required training completion must follow the standard exception request procedure and cannot be submitted using this interface.

If an agency needs to staff a position prior to the employee receiving training, a training exception request must be submitted and approved. At that time, OSC Security will grant a 30-day access to NCFS.  However, the agency CFO assumes all responsibility for employees’ actions while under the exception. The employee must complete or be registered to attend all necessary training classes within 30 days of the exception for access to remain active. If these conditions are not met, OSC Security may revoke access until training is complete.
 

Procedures

• SEC100: NCFS Security Request
• CFO Exceptions Requests

Accounting Guidance

N/A

Related Documents (Memos/Forms)

Quick Reference Guide - SEC-01 NCFS Security Request

Revision History

• 8/15/2023 - New Policy