HomeSecurity

Privileged Access Management

Jenna Phipps
Jenna Phipps
Updated on:

Privileged access management is a strategy used by enterprises to secure privileged employee access to systems and confidential information. It differs from IAM identity and access management in its focus on only privileged access accounts. These are higher-level than ordinary user logins and accounts, which IAM manages. Privileged access refers to the specific rights of users in an organization to access important systems or accounts.

Privileged access management operates from the principle of least privilege, a business standard that limits account access to employees dependent on the minimum access they need to perform their regular duties. It also assumes, accurately, that hackers and unauthorized parties often achieve access control through privileged accounts. One study revealed that of the sampled companies that suffered a data breach, 74 percent noticed a connection between the breach and misused privileged access.

Managing privileged access, then, is paramount to maintaining corporate security and confidentiality. Passwords, high-level IT accounts, and encryption keys are just a few examples of privileged access items that should be protected. Multiple privileged access accounts exist in an organization. Just a few of them are listed here:

  • Privileged user accounts: accounts which only one particular user may access, such as an email, application, or device
  • Domain administrative accounts: accounts that allow authorized users to change and add users to company applications and systems
  • Application accounts: accounts that can access company applications and edit or connect them

Privileged access management (frequently abbreviated as PAM) is one of the main methods of protecting company systems and data. Strictly controlling user permissions promotes better accountability within the company. It’s also becoming required more frequently, as governing bodies are beginning to place regulations for privileged access on companies. Complying with these data privacy regulations may mean that organizations are required to implement a privileged access management strategy. Strongly managing passwords and keeping accounts locked unless absolutely necessary are two primary elements of PAM. Implementing PAM software to manage and automate some of the security processes can also help organizations better monitor their privileged access.






Jenna Phipps
Jenna Phipps
Jenna Phipps is a writer for Webopedia.com, Enterprise Storage Forum, and CIO Insight. She covers data storage systems and data management, information technology security, and enterprise software solutions.

Related Articles

@ Sign

Networking Webopedia Staff - 0
Pronounced at sign or simply as at, this symbol is used in e-mail addressing to separate the user' name from the user's domain name,...

Munging

Productivity Vangie Beal - 0
(MUHN-jing) Munging (address munging), is the act of altering an email address posted on a Web page to make it unreadable to bots and...

How to Create an RSS Feed

Development Vangie Beal - 0
In the second installment of RSS how-to, we look at some of the nonrequired (optional) channel and item tags, discuss RSS specifications in-depth and...

Dictionary Attack

Productivity Vangie Beal - 0
(n.) (1) A method used to break security systems, specifically password-based security systems, in which the attacker systematically tests all possible passwords beginning with...

Related Articles

Definitions

ScalaHosting

ScalaHosting is a leading managed hosting provider that offers secure, scalable, and affordable...
Read more
Development

HRIS

Human resources information system (HRIS) solutions help businesses manage multiple facets of their...
Read more
Definitions

Best Managed Service Providers...

In today's business world, managed services are more critical than ever. They can...
Read more

Webopedia is an online information technology and computer science resource for IT professionals, students, and educators. Webopedia focuses on connecting researchers with IT resources that are most helpful for them. Webopedia resources cover technology definitions, educational guides, and software reviews that are accessible to all researchers regardless of technical background.

Advertisers

Advertise with Webopedia and our other IT-focused platforms.

Advertise with Us

Menu

Property of Find.co
© 2023 Webopedia. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which Webopedia receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. Webopedia does not include all companies or all types of products available in the marketplace.