Expert360 + OpenAI: Our major AI matching algorithm update
Atlassian
2
 min read

Solving Jira Security Risks at Tally Group

Written by 
Anna Ellis
Published On
September 1, 2025

Tally Group were facing significant security and compliance challenges with their existing Jira permissions setup, which granted unrestricted access to all logged-in users across the entire Jira site.

To address these critical issues, Expert360 were engaged to conduct a comprehensive assessment and implement a secure, role-based permissions model.

Tally Group were facing significant security and compliance challenges with their existing Jira permissions setup, which granted unrestricted access to all logged-in users across the entire Jira site.

To address these critical issues, Expert360 were engaged to conduct a comprehensive assessment and implement a secure, role-based permissions model.

Solution

The review identified several key areas requiring immediate attention, with the most significant being the implementation of granular access controls to enable secure external collaboration while protecting sensitive internal data.

  • Security Assessment & Discovery — reviewed current permission structures and identified vulnerabilities in data access controls. Recommended implementing role-based access to prevent unauthorized data exposure and conducted an audit of user access patterns and external collaboration requirements.
  • Permission Strategy & Design — defined role-based permission schemes with specific external user groups, established generic licensing groups (jira-servicemanagement-external-users and jira-software-external-users), and prepared a comprehensive change management plan for internal staff.
  • Technical Implementation — created individual external groups for tailored project access, configured “Client/External” roles within permission schemes, and validated access controls with Tally users. Ensured all internal staff maintained appropriate role assignments across projects and completed the implementation with ongoing post-deployment monitoring.
Impact

The implemented solutions delivered measurable benefits across security, collaboration, and efficiency:

  • Enhanced Data Security — delivered through controlled access mechanisms that protect sensitive customer information from unauthorized exposure.
  • Improved External Collaboration & Compliance — enabling secure partnerships with clients and vendors while meeting legal and regulatory requirements.
  • Streamlined Operational Efficiency — achieved through standardized permission schemes that reduce administrative overhead and provide clear user management protocols across JSM and Jira Software projects.
Expert360 is my absolute go-to for Atlassian support and Cloud migration. Their team is highly skilled and incredibly professional. They've consistently provided exceptional service, making complex processes like cloud migration seamless and stress-free. I highly recommend them for any Atlassian-related needs.
Chris George, Tally Group – Global IT Team
Need Expert help on a similar project?

Hire an elite Expert to help you deliver on your most important projects, on your terms.

Expert360 Engage

We help de-risk, govern, build, uplift, scale and manage your delivery organisations, programmes and projects.

Our proven history of delivering real value to customers and access to an extended global network enable us to deliver an unrivalled engagement experience.

Browse more case studies