From the course: CISSP Cert Prep (2021): 5 Identity and Access Management

Unlock the full course today

Join today to access over 22,500 courses taught by industry experts or purchase this course individually.

Account monitoring

Account monitoring

From the course: CISSP Cert Prep (2021): 5 Identity and Access Management

Start my 1-month free trial

Account monitoring

- [Instructor] Security administrators must pay careful attention to the permissions and use of end-user accounts to protect against security incidents. Let's take a look at some account monitoring issues that organizations might encounter. The first of these is inaccurate permissions assigned to accounts that either prevent a user from doing their work or violate the principle of least privilege. These permissions are often the result of privilege creep, a condition that occurs when users switch jobs and gain new permissions but never have their old permissions revoked. To protect against inaccurate permissions, administrators should perform regular user account audits in cooperation with managers from around the organization. During each of these manual reviews, administrators should pull a listing of all of the permissions assigned to each account and then review that listing with managers to ensure that the permissions…

Contents