>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

IAC-21Least Privilege

Weight: 10

>Control Description

Mechanisms exist to utilize the concept of least privilege, allowing only authorized access to processes necessary to accomplish assigned tasks in accordance with organizational business functions.

>Cross-Framework Mappings

NIST SP 800-53 r5

AC-6
Compare
SA-8(14)
Compare

NIST CSF 2.0

PR.AA-05
Compare
PR.DS-10
Compare

PCI DSS v4.0.1

1.3.1
Compare
1.3.2
Compare
1.3.3
Compare
3.4.1
Compare
3.4.2
Compare
7.1.1
Compare
7.1.2
Compare
7.2.1
Compare
7.2.2
Compare
7.2.3
Compare
7.2.4
Compare
7.2.5
Compare
7.2.6
Compare
7.3.1
Compare
7.3.2
Compare
7.3.3
Compare
8.6.1
Compare
8.6.2
Compare
8.6.3
Compare

CIS Controls v8

5.4
Compare

SOC 2 TSC

CC5.2
Compare
CC6.1
Compare

CMMC v2.0

AC.L2-3.1.5
Compare

NIST SP 800-171

3.1.5
Compare

FedRAMP Rev 5

AC-6
Compare

Canada ITSP 10.171

03.01.01.C.03
Compare
03.01.01.D.01
Compare
03.01.01.D.02
Compare
03.01.04.B
Compare
03.01.05.A
Compare
03.01.05.B
Compare
03.01.06.A
Compare
03.01.07.A
Compare
03.03.08.A
Compare
03.03.08.B
Compare
03.04.05
Compare

OSFI B-13

3.2.7
Compare

Australia Essential Eight

ML1-P4
Compare
ML2-P4
Compare
ML3-P4
Compare

Australia ISM

ISM-0441
Compare
ISM-0611
Compare
ISM-1380
Compare
ISM-1392
Compare
ISM-1705
Compare
ISM-1706
Compare
ISM-1707
Compare
ISM-1708
Compare
ISM-1823
Compare
ISM-1824
Compare
ISM-1825
Compare
ISM-1832
Compare
ISM-1833
Compare
ISM-1841
Compare
ISM-1842
Compare
ISM-1852
Compare
ISM-1883
Compare

India SEBI Guidelines

PR.AA.S3
Compare

EU CRA Annexes

Annex 1.1(3)(e)
Compare

EU DORA

Article 9.4(c)
Compare

Saudi Arabia IoT Guidelines

2-2-1
Compare

Spain ENS

Article 17
Compare
Article 20
Compare

UK DEF STAN 05-138

2205.0
Compare
2206.0
Compare

SOC 2 TSC (Detailed)

CC5.2-POF3
Compare
CC6.1
Compare
CC6.1-POF7
Compare
CC6.1-POF12
Compare
CC6.1-POF13
Compare

CIS Controls v8.1 (Detailed)

5.4
Compare

GovRAMP

AC-06
Compare

IEC TR 60601-4-5

4.4
Compare

ISO 27002:2022

5.15
Compare
5.18
Compare
8.3
Compare
8.12
Compare

NIST SP 800-161

AC-6
Compare

NIST SP 800-171 Rev 3

03.01.01.c.03
Compare
03.01.01.d.01
Compare
03.01.01.d.02
Compare
03.01.04.b
Compare
03.01.05.a
Compare
03.01.05.b
Compare
03.01.06.a
Compare
03.01.07.a
Compare
03.03.08.a
Compare
03.03.08.b
Compare
03.04.05
Compare

NIST SP 800-171A Rev 3

A.03.01.02[02]
Compare
A.03.01.05.a
Compare

NIST SP 800-171A

3.1.5[b]
Compare
3.1.5[c]
Compare
3.1.5[d]
Compare

NIST SP 800-207 Zero Trust

NIST Tenet 3
Compare

SPARTA

CM0039
Compare

TISAX

4.2.1
Compare

Data Privacy Management Principles

7.1
Compare

FBI CJIS

AC-6
Compare

DHS TIC 3.0

3.UNI.LPRIV
Compare

DoD Zero Trust Roadmap

1.7
Compare
4.7
Compare

GLBA (16 CFR 314)

314.4(c)(1)(i)
Compare

HIPAA Simplification 2013

§ 164.308(a)(3)(i)
Compare
§ 164.312(a)(1)
Compare

NY DFS 23 NYCRR 500

500.7(a)(1)
Compare
500.7(a)(2)
Compare

Ask AI

Configure your API key to use AI features.