Operations
This section covers the operational processes that keep our nomenclature consistent and our access model secure. Every group, role, and engagement follows the same lifecycle pattern: create, operate, retire.
The Lifecycle Pattern
Section titled “The Lifecycle Pattern”Every resource in the nomenclature system follows the same three-phase lifecycle:
Create
Section titled “Create”- Justify — Document the need (ticket with purpose, scope, owner).
- Name — Follow the canonical pattern for the resource type.
- Configure — Apply type-specific settings (security label, membership, posting rules).
- Wire — Connect to parent groups, drives, and downstream consumers.
- Evidence — Screenshot/commit settings to the change ticket or IaC repo.
Operate
Section titled “Operate”- Quarterly reviews — Verify owners, members, settings, and compliance.
- JML events — Update memberships when people join, move, or leave.
- Drift detection — Automation flags deviations from canonical settings.
Retire
Section titled “Retire”- Freeze — Disable posting, remove from ACLs.
- Export — Archive per retention policy.
- Hold — Keep locked for audit period (typically 1 year).
- Delete — Remove after hold period.
Pages in This Section
Section titled “Pages in This Section”- Lifecycle — JML processes, change control, and cadences
- Governance — Tenant model, compliance, and security invariants