graphgrc

SCF - IAC-21.2 - Non-Privileged Access for Non-Security Functions

Mechanisms exist to prohibit privileged users from using privileged accounts, while performing non-security functions.

Mapped framework controls

NIST 800-53

• AC-6(2)

Control questions

Does the organization prohibit privileged users from using privileged accounts, while performing non-security functions?

This site is open source. Improve this page.