Exception Requests

There are few circumstances where there could be requests for non-encryption of certain devices or disabling of firewall filtering etc. The requests are classified as miscellaneous exception requests and the requests are handled by UMIT Risk Assessment team on an individual basis.

There are few circumstances where there could be requests for non-encryption of certain devices or disabling of firewall filtering etc. The requests are classified as miscellaneous exception requests and the requests are handled by UMIT Risk Assessment team on an individual basis.

The exception request process is as follows:

  1. The requestor opens a ServiceNow request with the objectives and assign it to “Security Compliance” Team.
  2. The Security and Compliance team member reviews the request and performs assessment of the request.
  3. If further information required the Security team member contacts the requestor for further information.
  4. After collecting required information the Security team member performs a comprehensive assessment of the request and provides a decision to the requestor.