Safeguards

Permission model and least privilege

What is a permission model?

A permission model defines who may access which data. The principle of least privilege gives every account exactly the rights its job requires.

Networks that have grown over the years show the same findings again and again: accounts of former staff are still active, administrator rights sit on accounts used for daily work, and shares are open to the whole company although they only concern one department.

A permission model only holds up over time with a fixed process for people joining, moving and leaving. Put that process in writing and you can also demonstrate, when reviewed, that access is under control.

All terms in the knowledge base

From the term to practice

Where does your business actually stand?

The IT Check reviews your IT across 8 audit areas with more than 100 individual checks and delivers documented findings with a prioritised action plan. From 1,299 € excl. VAT. The first call takes 20 minutes and carries no charge.

Book a first call