Can Multiple User's Upload Evidence to CIS-CSAT Pro?

Owned by
Nick Romanzo
, created
Last updated: Apr 20, 2022 by
Amanda McGown
1 min read

Product Name

CIS CSAT Pro (SecureSuite Controls Self Assessment Tool)

Product Version

All

Date

Apr 19, 2022

 

Problem

Can multiple users upload evidence, even if they are not assigned to the Control?

 

Solution

For CSAT Pro, both the Full User and Organization Admin Organization Roles can operate on all Safeguards in an assessment for which they have those roles (even if the Safeguard is not assigned directly to those users). The only Organization Role that needs to be assigned directly to a Safeguard to upload evidence to it is the Basic User Organization Role.

Full User is the Organization Role between Basic User and Organization Admin. A Full User can work on any Safeguards (including uploading evidence) in the assessments for the organization(s) for which they have the Full User role, but they do not have Org Admin privileges such as creating new assessments, deleting assessments, adding/modifying user roles, etc.

An organization can have many Full Users or Org Admins, all of which would be able to upload evidence to any Safeguard in the assessments belonging to the organization/sub-organizations for which they have that role.

Please see https://csat.readthedocs.io/en/stable/source/csat_pro_user_guide/#organization-roles for details.

Keywords; Evidence Upload CSAT

Content by Label

Copyright © 2020

Center for Internet Security®