>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

4.2.14.2.1

>Control Description

+ The requirements for the management of access rights (authorization) are determined and fulfilled. The following aspects are considered: - Procedure for application, verification, and approval, - Applying the minimum (“need-to-know”/"least privilege") principle. - Access rights are revoked when no longer needed + The access rights granted for normal and privileged user accounts and technical accounts are reviewed at regular intervals also within IT systems of customers.

>Cross-Framework Mappings

SCF

IAC-07
Compare
IAC-08
Compare
IAC-17
Compare
IAC-21
Compare
IAC-28.1
Compare

Ask AI

Configure your API key to use AI features.