It is important for the IQS System Manager to identify the levels of security for the management of this information database. They should meet with the organization’s agency administrator and determine who should have access to the IQS information. They should determine who may enter information, change or modify records, certify and qualify individuals for various job classifications, issue “Incident Cards” and view the records.
Seven roles are defined for the IQS system as explained below. The roles are used to control access to the modules within IQS, control what data the user can work with in IQS and actions the user can perform within the modules. Reference the Security Roles Matrix for the details of access given to each role within IQSweb. IQS users can be assigned to only one role. IQS is distributed with a user called IQSweb that has been given the role of Manager. New IQS users can only be created or edited by an existing user with the role of Manager.
Organizational Level Access (OLA) is used to limit the records to which a user has access. OLA is applied to all roles except Manager.
Qualification Level Access (QLA) is used to limit the positions to which users have access. QLA is defined via Job Permission groups, which can be assigned to users with the role of Data Entry Support. Job Permission groups are identified in the Reference Data/Job Permissions module. For the positions identified, a user with the role Data Entry Support can add, edit or delete these positions in person's Qualifications or Task Books and also print the positions on an Incident Qualification Card. For jobs that are not identified, a user with the role Data Entry Support can only view those Qualifications or Task Books and cannot print those qualification on an Incident Qualification Card. Users can be assigned multiple QLA groups. If a user has multiple QLA groups, the positions that are listed in each group will be combined when using QLA-protected pages.
Manager
– Users with Manager role have access to all IQS functions including
administrative tasks such as creating new users and assigning them
to a role and giving them organizational level access. Managers
have access to all records in the IQS database. Organizational
Level Access is NOT applied to users with Manager role; however, filters
can still be applied where applicable to see smaller lists of data.
Data
Entry Manager – Users with Data Entry Manager role have access
to all modules except those within Administration. In addition a limited
number of reference tables are available to edit. Organizational
Level Access is applied to users with Data Entry Manager role.
Data
Entry Support – Users with Data Entry Support role have access
to all modules except the system administration module. In addition
a limited number of reference tables are available to edit. Organizational
Level Access is applied to users with Data Entry Support role. In
addition, Qualification Level Access is applied to users with Data
Entry Support role, which is the main difference between this role
and the Data Entry Manager role.
View
Only - Users with View Only role can view Persons and Certifications
and run all reports in IQS, with the exception of the Incident Qualification
Card. Organizational Level Access is applied to users with View
Only role.
Post
- Users with the Post role can record Fitness, Experience and Refresher
Training using the Post modules. In addition, Post users can
view Persons and Certifications and run all reports in IQS, with the
exception of the Incident Qualification Card. Organizational
Level Access is applied to users with Post role.
Training
- Users with the Training role can utilize all the Training modules
including posting refresher training. In addition, Training
users can view Persons and Certifications and run all reports in IQS,
with the exception of the Incident Qualification Card. Organizational
Level Access is applied to users with Training role.
Qual Card - Users with Qual Card role can only run the Incident Qualification Card report. Organizational Level Access is applied to users with Qual Card role.