One of the fundamental responsibilities of information security professionals is performing account management tasks. This includes designing strong processes that implement the principles of least privilege and separation of duties, implementing job rotation schemes and managing the account lifecycle. In this video, learn how to conduct account and privilege management activities.
- [Instructor] One of the fundamental responsibilities…of information security professionals…is performing account management tasks.…This includes designing strong processes…that implement the principles of least privilege…and separation of duties,…implementing job rotation schemes,…and managing the account life cycle.…The principle of least privilege states…that an individual should only have the minimum…set of privileges necessary to complete…their assigned job duties.…The separation of duties principles states…that performing sensitive actions…should require the collaboration of two individuals.…
Account managers issuing permissions should ensure…that the permissions they grant users…are consistent with these principles.…For more information on these two principles…see the authorization video of this course.…Many organizations also implement job rotation schemes…designed to move people around from job to job…on a periodic basis.…This has obvious personnel benefits by providing teams…with a diverse set of experiences…
To join one of Mike's free study groups for access to bonus tips and practice questions, visit certmike.com.
- Identity and access management
- Using access cards and biometrics
- Multifactor authentication
- Password authentication protocols
- Device authentication
- Identity management life cycle
- Access control lists
Skill Level Intermediate
Q: This course was updated on 05/18/2018. What changed?
A: New videos were added that cover subject/object model. In addition, the following topics were updated: registration and identity proofing, SSO and federation, and advanced authorization concepts.