Risk Management Best Practices for Privileged Access Management (PAM)
This resource is published by One Identity
Access management includes all activities to ensure that only approved users have access to the resources that they need given their work responsibilities during allowed times. To achieve this, it is necessary to answer the following questions:
- Who are the approved users of a system?
- Which work activities do they perform?
- Are they a privileged user or standard business user?
- Which permissions do they need?
- What are the required authentication processes?
- How are a user’s work permissions and activities certified/approved?
- What is the regulatory framework for these processes and work activities?
- How long should the user’s permissions be valid?
Once the different types of users have been identified – which can include standard business users, contractors, customers and privileged users – it is of utmost importance to create a Privileged Access Management (PAM) program. This is a collection of practices, policies and tools that control privileged access to critical systems. This is crucial since these privileged users (administrators) often have unlimited access to systems and data.
Server, Applications, Databases, Network, Operating System, Compliance, Disaster Recovery, Data Center, Big Data, Databases, Firewall, VPN, Infrastructure Management, Data Centers, Server, Storage, SDDC, Virtualization, Cloud Computing, Cloud, Analytics, Visual Analytics, Data Analytics, Predictive Analytics, Artificial Intelligence