Skip to main content

User & Access Management

User and access management ensures that only authorised personnel can view, manage, or enforce actions within the First Watch® platform. Access control is designed to support operational governance, accountability, and compliance, while remaining aligned with industrial roles and responsibilities.

Controlled User Provisioning and Role Assignment

All system users are explicitly and manually provisioned by an authorised administrator. There is no automatic or implicit user creation. Each user is assigned a predefined role that determines their access rights and operational authority within the platform.

Roles are designed to reflect typical industrial responsibilities and to enforce least-privilege access.

At a high level, roles govern permissions such as:

  • Viewing asset and system information — situational awareness and operational monitoring
  • Editing asset metadata and operational context — maintaining accurate asset records
  • Acknowledging alarms and participating in investigations — responding to operational events
  • Managing temporary policy overrides during approved activities — controlled deviation from standard enforcement
  • Administering users, policies, enterprise maps, and licensing — platform-wide governance and configuration

This structured role model ensures that sensitive actions — such as policy management, override control, or system-wide changes — are limited to appropriately authorised personnel.

Role Differentiation and Governance Intent

Roles are intentionally differentiated to support governance and separation of duties:

  • Viewer / Asset Owner roles focus on visibility and situational awareness
  • Operator roles support alarm handling and controlled operational actions
  • Administrator roles manage users, policies, system structure, and licensing

Not all roles can acknowledge alarms, apply overrides, or modify policies. This prevents accidental or unauthorised escalation of privileges and ensures that operational authority aligns with responsibility.

User and access management within the First Watch® platform provides structured, governance-aligned control over who can access, operate, and administer the system. By combining explicit provisioning, role-based permissions, and separation of duties, the platform ensures that accountability and least-privilege principles are maintained across all operational activities.