Restrict Administrative Privileges

Privileged Access Management: Control Your Keys to the Kingdom

Introduction:

Admin rights are the skeleton keys attackers crave – with them, they can unlock your entire network. The ASD requires implementing Just Enough Administration (JEA) because 80% of breaches involve privilege escalation.

Maturity Level Implementation:

Level 0:

(Non-Compliant)

  • Shared admin accounts
  • No privilege logging
  • Local admin rights common

Level 1:

(Basic)

  • Separate admin accounts
  • Basic privilege logging
  • Limited local admin rights

Level 2

(Intermediate)

  • Privileged access workstations
  • JEA implementation
  • Session recording

Level 3:

(Advanced)

  • Zero standing privileges
  • AI-based anomaly detection
  • Hardware-backed authentication

ASD References

PROTECT - Restrict Administrative Privileges
A proven set of cyber security strategies by ACSC to prevent threats, secure systems, and ensure data recovery.
Facebook-f X-twitter Instagram Youtube Linkedin

Quick links

Services

Frameworks

Contact Us