Permission Groups

Permission groups are used to define groups of employees who share specific attributes. You can use various attributes to select the group members, for example a user's department, country/region, or job code. In RBP, you can assign permission roles to permission groups. In addition, you use groups to define the target population a granted user has access to.

Permission Groups are currently managed only ‘on demand’ this means that a ticket or an email should be sent to the Authorization Team requesting to add or remove an access. As a general rule when a request is coming from the HR Operations Team there is no need for additional validation since they manage the validations on their side.

If the request is coming from the end user directly before proceeding we need to confirm user’s ‘job classification’ in order to make sure it’s aligned with the permissions that are being requested (eg. someone with the job ‘Country & Site HR Partner (22030078)’ normally would request access to ‘CS - HR Site - country’ groups). If this is not the case the request needs to be validated first with the ‘owner’ of the permission in question.