An employee left. Their access did not.
The scenario:
When a client's employee leaves, the leaving is the easy part. The dangerous part is the access nobody remembered to remove.
Old accounts, shared logins, app permissions, mobile devices. Each one is a door left open. A written offboarding checklist closes every door the same way, every time.
The prompt:
You are building a security-focused employee offboarding checklist for a managed service provider to run when a client's staff member leaves.
Works in any AI tool.
Context:
The client's stack: [identity provider, key apps]
Who runs the offboarding: [role]
Build:
Every access point: email and identity accounts, single sign-on, third-party apps, VPN, shared credentials, mobile device management, physical access, data handover
For each, the action and how to verify it is done
Ordered so the highest-risk items happen first
