Briefly describe your employee life cycle process – account provisioning, access removal, password policy, what controls are implemented for employees with potential access to customer data?

We automate user provisioning and deprovisioning through integration between our HR system and our IdP (Okta), ensuring access is granted upon onboarding and revoked promptly upon termination or role change. We follow NIST SP 800-63B guidelines for password policy and enforce multi-factor authentication (MFA). Access to production environments is governed by role-based access control (RBAC) following the principle of least privilege, with periodic access reviews to validate appropriateness. Employees with potential access to customer data undergo background checks and ongoing security awareness training