Simplifying Access Management for a Security Platform
Overview
VaultKey is an enterprise security platform that manages role-based access control across teams and applications. The admin interface was powerful but difficult to navigate, especially for IT managers who needed to onboard new employees, adjust permissions, or audit access across multiple tools quickly.
I redesigned the access management workflow to reduce the time it takes to complete common tasks like provisioning, role changes, and access reviews. The focus was on making a complex system feel manageable without oversimplifying the underlying permission model.
-31%
Provisioning Time
+26%
Task Completion
-40%
Support Tickets
Admin console with role templates, permission map, and confirmation panel
Role
Product Designer
Timeline
11 Weeks
Team
PM, 3 Engineers, Security Lead
Platform
Web App (Desktop)
Challenge
IT admins spent too much time on routine access tasks. Adding a new employee to the right tools and roles required navigating multiple screens, remembering which permissions mapped to which applications, and cross-referencing documentation that was often outdated.
Mistakes were common. Over-provisioning created security risks, and under-provisioning caused delays for new hires. Both led to follow-up support tickets and frustrated teams on both sides.
Problem Statement
How might we make everyday access management tasks faster and less error-prone, while preserving the granular control that security teams need for compliance and auditing?
Five-screen provisioning flow condensed into two screens
Approach
I mapped the most frequent admin tasks end-to-end and focused on reducing steps and decisions for the cases that account for 80% of daily usage.
What I found
Most provisioning tasks followed predictable patterns. A new marketing hire needs roughly the same set of tools as the last one. But the system treated every new user like a blank slate, forcing admins to rebuild permission sets from scratch every time.
Process map showing repetitive manual provisioning across departments
What I changed
I introduced role templates, bulk provisioning, and a visual permission map that shows exactly which tools and access levels are included in each role. The provisioning flow was condensed from five screens to two, with confirmation and diff views before any changes go live.
Old per-app permission selection versus new template-based flow
Why it worked
By building around the most common patterns, the system felt fast for routine tasks while still supporting edge cases through an advanced mode. Admins did not have to sacrifice control to gain speed.
Three provisioning paths: standard, custom, and advanced
Solution
The redesigned workflow balanced speed for common tasks with depth for complex cases, using templates, visual mapping, and confirmation layers.
Role templates: Provision faster with reusable patterns
Admins can create and apply role templates that bundle the right tools and permissions for a given position. New hires can be provisioned in a few clicks instead of a few dozen, with the option to customize before confirming.
Role template library with usage stats and included permissions
Visual permission map: See what access actually looks like
A visual grid shows which tools, roles, and access levels apply to each user or group. Admins can spot over-provisioning or gaps at a glance, without digging through nested menus or reading permission documentation.
Visual permission grid showing access levels across all tools
Confirmation and diff view: Catch mistakes before they ship
Before any change goes live, a diff-style review screen shows exactly what is being added, removed, or changed. This catches errors before they become security incidents and gives admins confidence in every action.
Diff view comparing current access to proposed changes
Results
The redesigned access management workflow reduced provisioning time, improved accuracy, and cut the volume of access-related support tickets significantly.
-31% provisioning time
Role templates and the condensed flow made onboarding significantly faster
+26% task completion
More access tasks were completed successfully without follow-up corrections
-40% support tickets
Fewer permission errors meant fewer requests to fix access issues
Provisioning time and support ticket reductions after rollout
Reflection
Security tools often optimize for the worst case at the expense of the everyday case. The result is interfaces that feel slow and intimidating for tasks that should take seconds.
This project proved that making routine tasks faster does not have to mean weakening control. With good defaults and clear confirmations, speed and security can coexist.
Next Project
