Security policies

Security policies

A security policy is a set of rules that govern any objects (such as projects or programs) that are associated with the policy. These rules indicate which types of users will be able to view, modify, delete or perform any of the other relevant functions for these objects.

In order to express these rules, security policies contain tje following.

user roles to identify the types of users, and

function grants or blocks to identify what each type of user can or cannot do.

Multiple Security Policies are allowed, and one example security policy, Global, is provided with IBM® Marketing Operations.

The global policy is a special policy that is always considered in the governance of all objects in the system (rather than all users). Companies with simple security models need only utilize the global policy to express their rules.

Companies that require different groups to be kept in discrete groups from one another will utilize custom security policies to do so, and use the global policy only for system-wide administrative or executive access rules.

The term global is not intended to indicate that every user has full (global) access to everything, but rather that the security policy is, by default, globally-associated with every user.

Details of security policies are discussed in the IBM® Marketing Operations Administrator's Guide.

Copyright IBM Corporation 2014. All Rights Reserved.