Free ebook: NIS2 ready using ISO 27001 best practices
Download ebook
Academy home
User management: Different user roles in Cyberday

People who use Cyberday are divided into different user groups with different rights. This article goes through the purposes of different user levels.


The founder of an organization's Cyberday account becomes the first administrator. The administrator can e.g. manage other users and select the requirements frameworks that guide the work of the organization.

Administrator in Cyberday

  • Can manage other users and settings in the Organization Dashboardview
  • Can edit selectable frameworks
  • Shows the items you own in the Taskbook view
  • You can accept the instructions in the guidebook view


Team member in Cyberday:

  • Accesses the Organization Dasboardview
  • Can't see admin functions on the organization's dashboard(see Admins)
  • Shows the items you own in the Taskbook view
  • You can accept the instructions in the Guidebook view


When a new user is added to Cyberday, he or she becomes a contributor by default. The base user can be named as the owner of the tasks to be performed or documented, and he can view / edit these from his own Taskbook view.

Contributor in Cyberday

  • Shows the items you own in the Taskbook view
  • You can accept the instructions in the Guidebook view
  • Cannot access the Organization Dashboard view. The basic user is instructed to request a legal change from the administrators if they wish.


Every user in your organization's Teams environment who has either installed or assigned a Cyberday application to their own Teams environment as an administrator will be added as an employee from Cyberday's perspective.

Employee in Cyberday

  • Can accept guidelines in Guidebook view
  • By default, you cannot access other views, but you can request access to them if you wish

An access request can be accepted by one of the administrators on the organization's Dashboard.

External User

We currently have three different types of external users for different purposes.


We are having different partners, mainly consulting companies, who are working together with an organization directly in Cyberday. Partners can own tasks and themes. They can actively participate in the organizations security work, based on the rights the organization gives the Partner.


An auditor cannot be set as an owner and will not be counted in any of the statistics, such as in the guidelines acceptance statistics. This is usually used to seperate external users, who are doing i.e. audits.

Other external users

"Other" external users cannot be set as an owner for tasks or themes.
This is for example used for a manager who is interested sin i.e. viewing, but not editing reports and who does otherwise not actively participate in the work in Cyberday.


Share article