Solution
SOC 2 access reviews
Run access reviews from the identity graph and export evidence for CC6 controls.
TL;DR
Run access reviews from the identity graph and export evidence for CC6 controls. Start with a read-only audit, then use governed workflows for provider changes.
What is SOC 2 access reviews?
Run access reviews from the identity graph and export evidence for CC6 controls.
- Reviewer assignment
- Evidence export
- Last-updated audit narrative
What is SOC 2 access reviews?
Run access reviews from the identity graph and export evidence for CC6 controls.
Does this mutate provider state from intelligence?
No. Intelligence findings recommend actions. Governed workflows mutate provider state only after the runtime executes them.
Can we pilot this with one HRMS?
Yes. A focused pilot can start with one HRMS, a few SaaS apps, and the audit evidence path.
Do we need Okta or Entra first?
No. Kingsley INT can run direct HRMS-to-app workflows without an IdP in the middle.
What happens with apps that have no lifecycle API?
Browser automation can execute selected admin-console actions and capture evidence when APIs are unavailable.
How fast can the first audit run?
The free audit is designed to surface initial stale accounts and license waste quickly through read-only connections.
Are provider calls replay-safe?
Provider mutations are executed through queued workflows with lineage, attempts, and idempotency keys.
What is the primary CTA?
Run the free audit first. Automation setup comes after the evidence is trusted.
Run this against your real stack.
Read-only audit first. Workflow automation after you trust the evidence.
Run free audit