When offboarding an employee, prioritize the revocation of access to ensure data security. Follow these steps in order of severity:
-
Remove Google Workspace access by suspending the user. https://admin.google.com/ac/users
-
Revoke AWS access. https://us-east-1.console.aws.amazon.com/iam/home?region=us-east-1#/users
-
Revoke GCP access. Since GCP is using Google Workspace for authentication, access will be disabled from step 1.
-
Disable Github access by removing the user. https://github.com/orgs/{{ORG_NAME}}/people
- You can then remove the seat https://github.com/organizations/{{ORG_NAME}}/settings/billing/remove_seats
-
Revoke Notion access. Unfortunately there is no direct link so save time 😥
- You need to go to Settings → Members → Access Level.
-
Disable account on Slack. https://{{ORG_NAME}}.slack.com/admin
-
Remove user from Sentry. https://{{ORG_NAME}}.sentry.io/settings/members/
-
Remove user from Gadget.io. https://app.gadget.dev/auth/team/members
By following this order, we mitigate potential security risks associated with former employees retaining access to company systems and data.