IAC-16.4 ยท Dedicated Privileged Account

Control Description

Mechanisms exist to assign dedicated privileged user accounts to be used solely for duties requiring privileged access.

Control Question
Assessment question for control validation

Does the organization assign dedicated privileged user accounts to be used solely for duties requiring privileged access?

Control Weighting
7
Validation Cadence
Annual
NIST CSF Function
Protect
Supply Chain Risk Management (SCRM) Tiers
Applicable SCRM tier levels for this control
Tier 3 - Tactical
Errata & Additional Notes

- new control