Concept of authorizations in WP1

The access is defined by 2 parameters:

• The role itself, corresponding to a job, a responsibility, for example "EHS Admin" or "SDS Writer"

• The perimeter (usually BU or corporate level, aka "platform")

Additionally, options can be added to the role, to manage:

• R&D products (i.e products stored in the R&D authorization group of the BU)

• Confidential products (i.e products stored in the Confidential authorization group of the BU)

We have the possibility to separate between « display mode » and « edit mode »

Users are assigned "Composite" roles, that contain several "Simple" roles. For example the composite role "SDS Writer" includes the simple role "EHSM010- Manage Reports" allowing release of SDS in CG50.

Actors involved in the process

Role definition

• EH&S Role Owner: Responsible for validating role definition from an HSE perspective

• IT Domain Process Leader: Responsible to define authorization profiles from an IT perspective

• IT Security team: Responsible to set up the roles in SAP and ensure that the process is respected through ad hoc procedures

Role allocation

• Requester: the final user or his/her manager

• Approver: for some roles a double validation is in place, from the manager and the functional approver

• At GBU level: WW Product Stewards + backup (or Sandra Quintino for the Hazcom Service On Demand)

• At PRA/PS level: Marie Flourié

Workflow for user creation and/or EHS role allocation

When you create a ticket in freshdesk, the helpdesk will open a request for you in the "GRC Cup" tool (EXCEPT for Cytec legacy users or Technology Solutions roles that are going through the new tool being deployed: "IDM")

The typical access of a Product steward / SDS Writer should include

Roles to be provided

Dangerous Good Contact (EHS005) with options

EHSM030 -OBJ-CPY-IND- Manage Confidential products for Dangerous Good Contact
EHSM031 -OBJ-CPY-IND- Manage R&D products for Dangerous Good Contact

Enterprise Product Steward (EHS002) with option:

EHSM034 -OBJ-CPY-IND- Manage Confidential Products for Product Steward

SDS Writer for commercial products (EHS004) with option:

EHSM033 -OBJ-CPY-IND- Manage Confidential products for SDS Writer

SDS Writer for R&D products (EHS006)

to be derived for the correct GBUs

If you know already which role(s) to request (see description of roles below), note that you can also create the request yourself in GRC CUP, everyone has access. See dedicated tutorial here.

EH&S roles at PRA/PS level

EHS administrator (EHS001)

• Can manage (= edit mode) all the specifications: PURE_SUB (including IH), LIST_SUB, LS_UN_SUB, PROD_COM (all groups, including raw materials, R&D and confidential ones)

• Phrase management

• Can manage rules via access to the EHS Expert rule server (role EHSM005 -COM- Administration Tools)

Expert and technician DRC (EHS003)

• Display PROD_COM for all GBUs

• Can view all PURE_SUB

• Options = additional roles :

• EHSM035 -OBJ-CPY-IND- Access Confidential products for Expert and Technician (DRC)

• EHSM036 -OBJ-CPY-IND- Access R&D products for Expert and Technician (DRC)

Raw Material Product Steward (EHS007)

• Edit mode for products assigned to the Raw Materials Authorization group (ZZ_BU_00), compositions and properties (everyone else only has display access)

• In display mode access to all authorization groups

Dangerous Good Administrator (EHS008)

• DG_CL_SUB management (= edit mode and creation)

• DOT phrase management (static phrase)

• Option = additional role :

• EHSM032 -OBJ-CPY-IND- Manage R&D products for Dangerous Good Administrator

• EHSD007-IND- Display Specifications : enables all PROD_COM visualization

SDS Writer for Corporate R&D products (EHS006)

• R&D PROD_COM creation (in the dedicated authorization group Corporate R&D)

• PURE_SUB R&D management (in the dedicated authorization group ZZ_RD)

• SDS and labels authoring for Corporate R&D

Certificates Administrator (EHS012)

• Manage Certificates phrases library, classes and certificates

OH Administrator (EHS013)

• Edit access only for OH classes in the OH Property Tree

• Access to specific reports

• Edit access to PURE_SUB to run the OH rule

OH Viewer (EHS014)

• Display access only for the OH PURE_SUB property tree

EH&S roles at GBU level

Dangerous Good Contact (EHS005)

• DG_CL_SUB assignment to PROD_COM

• Run DG master filling (DGE5)

• Edit phrases - restricted to DG phrases (specific library)

• Edit mode for the PROD_COM of the relevant BU

• Transport label, Tremcard and Transport Sheet generation

• Options = additional roles :

• EHSM030 -OBJ-CPY-IND- Manage Confidential products for Dangerous Good Contact

• EHSM031 -OBJ-CPY-IND- Manage R&D products for Dangerous Good Contact

Enterprise Product Steward (EHS002)

• BOM/BOS interface management (specific transaction)

• MAXIMALIST management (specific transaction, EP)

• Edit mode for the PROD_COM of the relevant BU

• SVT reporting consultation

• Option = additional role :

• EHSM034 -OBJ-CPY-IND- Manage Confidential Products for Product Steward

SDS Writer for commercial products (EHS004)

• SDS and labels authoring: edit mode for the PROD_COM of the relevant BU

• Exposure Scenario management (contributing scenario creation)

• Option = additional role :

• EHSM033 -OBJ-CPY-IND- Manage Confidential products for SDS Writer

SDS Writer for R&D products (EHS006)

• R&D PROD_COM creation (in the dedicated authorization group R&D of the BU)

• PURE_SUB R&D management (in the dedicated authorization group ZZ_RD)

• SDS and labels authoring for the GBU R&D

Product Steward Display only (EHS015)

• Display only access to the PROD_COM of 1 BU by the Product Steward of another BU

• The goal is to be able to see and use the products of 1 BU that may be used as raw materials in the Exact Compo Based on Products for another BU

• Access to this role will be authorized by the BU approver

TDS Writer (EHS009)

• Manage phrases for TDS (specific library)

• Manage specific classes for TDS Property Tree

• Display for standard classes, all property trees

• Generate TDS

TDS Viewer (EHS010)

• Display phrases for TDS

• Display classes included in TDS Property Tree

• Display TDS

Certificates Writer (EHS016)

• Manage Certificates classes

• Generate Certificates

Page tree

Concept of authorizations in WP1

Actors involved in the process

Role definition

Role allocation

Workflow for user creation and/or EHS role allocation

EH&S roles at PRA/PS level

EHS administrator (EHS001)

Expert and technician DRC (EHS003)

Raw Material Product Steward (EHS007)

Dangerous Good Administrator (EHS008)

SDS Writer for Corporate R&D products (EHS006)

OH Administrator (EHS013)

OH Viewer (EHS014)

EH&S roles at GBU level

Dangerous Good Contact (EHS005)

Enterprise Product Steward (EHS002)

SDS Writer for commercial products (EHS004)

SDS Writer for R&D products (EHS006)

Product Steward Display only (EHS015)

TDS Writer (EHS009)

TDS Viewer (EHS010)

Certificates Writer (EHS016)

Solvay © 2017

INDOCS Administration

Page tree

EH&S roles and authorization management in WP1 with GRC - (to be updated)

Concept of authorizations in WP1

Actors involved in the process

Role definition

Role allocation

Workflow for user creation and/or EHS role allocation

EH&S roles at PRA/PS level

EHS administrator (EHS001)

Expert and technician DRC (EHS003)

Raw Material Product Steward (EHS007)

Dangerous Good Administrator (EHS008)

SDS Writer for Corporate R&D products (EHS006)

OH Administrator (EHS013)

OH Viewer (EHS014)

EH&S roles at GBU level

Dangerous Good Contact (EHS005)

Enterprise Product Steward (EHS002)

SDS Writer for commercial products (EHS004)

SDS Writer for R&D products (EHS006)

Product Steward Display only (EHS015)

TDS Writer (EHS009)

TDS Viewer (EHS010)

Certificates Writer (EHS016)

Solvay © 2017

INDOCS Administration