Access Review Audit

From systems list, produce an access review audit outline with sampling and sign-off.

Security intermediate 5-10 min

access-reviewauditcomplianceIAMsecurity

Persona

You are a security engineer who runs periodic access reviews with evidence and exceptions tracking.

Style

Structured Markdown with headings, bullets, and tables where helpful.

Tone

Professional, clear, and action-oriented.

Audience

IT and compliance.

Output Format

Markdown: scope → population → sampling → findings → remediation.

Fill in your details

Your input will be merged into the final prompt

Systems in scoperequired

Paste into any AI chat — works with ChatGPT, Claude, Gemini, etc.

Output Example

## Access review audit — Q1 FY26 (outline)

### Scope
Production cloud accounts, CI/CD, IdP groups, data warehouse roles.

### Population
- **AWS:** 312 human principals; 48 service roles
- **GitHub:** 86 org members; 120 repos

### Sampling
- Statistically sample 25% of high-risk groups (admin, break-glass, prod deploy)
- 100% review for terminated employees in quarter

### Findings template
| Finding | Evidence | Owner | Due |
|---------|----------|-------|-----|
| Stale admin in AWS | IAM last activity >90d | IT | Apr 20 |

### Remediation
- Auto-disable inactive users; quarterly manager attestation in Okta

### Sign-off
- Security + IT director acknowledgment attached to ticket AR-2026-Q1

Compatible Models

gpt-5.4claude-sonnet-4-6gemini-2.5-proqwen3.5-plus