System Defined Roles
Review the permissions for each system defined role in RiskOS™, including Account Owner, Administrator, and Analyst access levels.
The Account Owner is the most powerful administrative role in RiskOS™ and should be assigned to a limited number of users. The role has full access to the primary account and sub accounts in your organization, including access to transaction data, including PII, and user information.
When a Socure account is created, we provision the Account Owner role to a designated user in your organization. After the registration and provisioning are complete, the Account Owner can begin assigning additional user roles.
| Functionality | Production | Sandbox |
|---|---|---|
| Accounts | Can Edit | Can Edit |
| Roles | Can Edit | Can Edit |
| Users | Can Edit | Can Edit |
| Batch Jobs | Can Edit | Can Edit |
| Documentation Site | Can View | Can View |
| PII Access | Can View | Can View |
| Reports | Can Edit | Can Edit |
| Custom File Uploads | Can Create | Can Create |
| Workflows | Can Edit Can Move to Live Can Test Can View | Can Edit Can Move to Live Can Test Can View |
| Fraud Case Management | Can Assign Can Review Can Comment Can View Can Evaluate | Can Assign Can Review Can Comment Can View Can Evaluate |
| Allow/Deny List | Can Edit | Can Edit |
| Compliance Case Management | Can View | Can View |
| Custom Watchlist | Can View | Can View |
| Dashboard | Can View | Can View |
| Developers | Can Edit | Can Edit |
| Audit Logs | Can View | Can View |
| Configurations | Can Edit | Can Edit |
| Profiles | Can View | Can View |
The Administrator role can create sub accounts and has full access to each sub account's transaction data, including PII access, and user information. Every account and sub account must have at least one Administrator for user management and account configuration.
| Functionality | Production | Sandbox |
|---|---|---|
| Accounts | Can Edit | Can Edit |
| Roles | Can Edit | Can Edit |
| Users | Can Edit | Can Edit |
| Batch Jobs | Can Edit | Can Edit |
| Documentation Site | Can View | Can View |
| PII Access | Can View | Can View |
| Reports | Can Edit | Can Edit |
| Custom File Uploads | Can Create | Can Create |
| Workflows | Can Edit Can Move to Live Can Test Can View | Can Edit Can Move to Live Can Test Can View |
| Fraud Case Management | Can Assign Can Review Can Comment Can View Can Evaluate | Can Assign Can Review Can Comment Can View Can Evaluate |
| Allow/Deny List | Can Edit | Can Edit |
| Compliance Case Management | Can View | Can View |
| Custom Watchlist | Can View | Can View |
| Dashboard | Can View | Can View |
| Developers | Can Edit | Can Edit |
| Audit Logs | Can View | Can View |
| Configurations | Can Edit | Can Edit |
| Profiles | Can View | Can View |
The Fraud Analyst role has full access to PII but limited or no access to other features in RiskOS™. You can assign this role to multiple users in your account.
| Functionality | Production | Sandbox |
|---|---|---|
| Accounts | Can View | Can View |
| Roles | ✖︎ | ✖︎ |
| Users | ✖︎ | ✖︎ |
| Batch Jobs | Can View | Can View |
| Documentation Site | Can View | Can View |
| PII Access | Can View | Can View |
| Reports | Can Edit | Can Edit |
| Custom File Uploads | ✖︎ | ✖︎ |
| Workflows | Can Edit Can Test Can View | Can Edit Can Test Can View |
| Fraud Case Management | Can Assign Can Review Can Comment Can View Can Evaluate | Can Assign Can Review Can Comment Can View Can Evaluate |
| Allow/Deny List | Can Edit | Can Edit |
| Compliance Case Management | ✖︎ | ✖︎ |
| Custom Watchlist | Can View | Can View |
| Dashboard | Can View | Can View |
| Developers | ✖︎ | ✖︎ |
| Audit Logs | ✖︎ | ✖︎ |
| Configurations | Can View | Can View |
| Profiles | Can View | Can View |
The Developer has full access to the Developers page and limited or no access to the other features in RiskOS™, including no access to PII. You can assign this role to multiple users in your account.
| Functionality | Production | Sandbox |
|---|---|---|
| Accounts | Can View | Can View |
| Roles | ✖︎ | ✖︎ |
| Users | ✖︎ | ✖︎ |
| Batch Jobs | ✖︎ | ✖︎ |
| Documentation Site | Can View | Can View |
| PII Access | ✖︎ | ✖︎ |
| Reports | ✖︎ | ✖︎ |
| Custom File Uploads | ✖︎ | ✖︎ |
| Workflows | Can View | Can View |
| Fraud Case Management | ✖︎ | ✖︎ |
| Allow/Deny List | ✖︎ | ✖︎ |
| Compliance Case Management | ✖︎ | ✖︎ |
| Custom Watchlist | Can Edit | Can Edit |
| Dashboard | ✖︎ | ✖︎ |
| Developers | Can Edit | Can Edit |
| Audit Logs | Can View | Can View |
| Configurations | Can View | Can View |
| Profiles | ✖︎ | ✖︎ |
Compliance Case Management
The system-defined roles available for Compliance Case Management are listed in the following section.
Compliance roles receive cases based on the Case Management workflow your organization configures:
- One-step workflow (Step 1): Cases are auto-assigned to the Compliance Officer. See Watchlist One-Step Workflow.
- Two-step workflow (Step 2): Cases are auto-assigned round-robin to the Compliance Analyst, then escalated to the Compliance Supervisor for approval. See Watchlist Two-Step Workflow.
Note:
In a one-step workflow, only the Compliance Officer can act on a case. If Compliance Analyst or Compliance Supervisor roles remain assigned during a transition, they are included in round-robin assignment but cannot act on cases.
You don't have to remove a role before switching workflows. To reassign a case that the system auto-assigned to you during a transition, remove your own permission and the system reassigns the case automatically. A Workforce Manager can also remove an individual from the auto-assignment mechanism on a short-term basis.
The Compliance Supervisor role allows users to review cases, add comments, evaluate them, and assign them to other Compliance Analysts.
| Functionality | Production | Sandbox |
|---|---|---|
| Accounts | Can View | Can View |
| Roles | Can View | Can View |
| Users | Can Edit | Can Edit |
| Batch Jobs | Can View | Can View |
| Documentation Site | Can View | Can View |
| PII Access | Can View | Can View |
| Reports | ✖︎ | ✖︎ |
| Custom File Uploads | ✖︎ | ✖︎ |
| Workflows | Can View | Can View |
| Fraud Case Management | ✖︎ | ✖︎ |
| Allow/Deny List | Can Edit | Can Edit |
| Compliance Case Management | Can Assign Can Approve Can Comment Can Evaluate (Step 2) | Can Assign Can Approve Can Comment Can Evaluate (Step 2) |
| Custom Watchlist | Can Edit | Can Edit |
| Dashboard | ✖︎ | ✖︎ |
| Developers | Can Edit | Can Edit |
| Audit Logs | Can View | Can View |
| Configurations | Can View | Can View |
| Profiles | Can View | Can View |
The Compliance Officer role enables users to review cases, add comments, evaluate and approve them, and assign them to other Compliance Analysts.
| Functionality | Production | Sandbox |
|---|---|---|
| Accounts | Can View | Can View |
| Roles | Can View | Can View |
| Users | Can Edit | Can Edit |
| Batch Jobs | Can View | Can View |
| Documentation Site | Can View | Can View |
| PII Access | Can View | Can View |
| Reports | ✖︎ | ✖︎ |
| Custom File Uploads | ✖︎ | ✖︎ |
| Workflows | Can Edit Can Test Can View | Can Edit Can Test Can View |
| Fraud Case Management | ✖︎ | ✖︎ |
| Allow/Deny List | Can Edit | Can Edit |
| Compliance Case Management | Can Assign Can Review Can Comment Can Evaluate (Step 1) | Can Assign Can Review Can Comment Can Evaluate (Step 1) |
| Custom Watchlist | ✖︎ | ✖︎ |
| Dashboard | Can View | Can View |
| Developers | ✖︎ | ✖︎ |
| Audit Logs | ✖︎ | ✖︎ |
| Configurations | Can View | Can View |
| Profiles | Can View | Can View |
The Compliance Analyst role gives the user the ability to review and add comments to compliance cases.
| Functionality | Production | Sandbox |
|---|---|---|
| Accounts | Can View | Can View |
| Roles | ✖︎ | ✖︎ |
| Users | Can View | Can View |
| Batch Jobs | Can View | Can View |
| Documentation Site | Can View | Can View |
| PII Access | Can View | Can View |
| Reports | ✖︎ | ✖︎ |
| Custom File Uploads | ✖︎ | ✖︎ |
| Workflows | Can View | Can View |
| Fraud Case Management | ✖︎ | ✖︎ |
| Allow/Deny List | Can View | Can View |
| Compliance Case Management | Can Review Can Comment (Step 2) | Can Review Can Comment (Step 2) |
| Custom Watchlist | Can Edit | Can Edit |
| Dashboard | ✖︎ | ✖︎ |
| Developers | Can Edit | Can Edit |
| Audit Logs | Can View | Can View |
| Configurations | ✖︎ | ✖︎ |
| Profiles | Can View | Can View |
Updated 2 days ago

