With Vanta's Access Review feature, any Vanta user with employee-level access can hold the system reviewer role. This ensures that users see only the information they have permission to view while still allowing them to complete the access review.
Only a system Editor or Admin can edit the Access Reviews
Assigning a System Reviewer
- From the left-hand navigation panel, select Access and then select Reviews.
- Click into the review itself
- Select the edit icon next to the Reviewer
- Search for the appropriate user and add them as the system reviewer
Reviewing your access as a System Reviewer
As a security best practice, we do not recommend System Reviews review their account access.
We understand that each business is unique and may have its appropriate reasons for self-reviewing. If self-review is unavoidable for the user assigned as the System reviewer of a vendor, they will be prompted to document a reason for self-review.
Removing a System Reviewer
- Select the edit option from the owner of an access reviewer
- Select Remove assignee
- The assigned system reviewer will receive an email notification to alert them to begin the access review.
Why am I seeing a Lock Icon next to the Owner?
- The access review has already been completed if you see a lock icon next to the owner. A system reviewer can not be assigned or reassigned after the access review.