Episode 11 — Reduce Privilege Risk Fast: Least Privilege, Admin Rights, and Separation of Duties
This episode explains why privilege management is a high-frequency driver of real breaches and a recurring focus in GSEC questions that ask you to pick the control that most reduces impact. You’ll define least privilege as the minimum permissions needed for a task, then connect it to administrative rights, privileged sessions, and the difference between standing access and just-in-time elevation. We’ll clarify separation of duties as a design principle that prevents one person or one account from completing a risky end-to-end action without oversight, which matters in areas like payments, production changes, and security tooling. You’ll walk through scenarios such as developers requesting local admin, IT using shared admin accounts, and security exceptions that never expire, then apply best practices like role scoping, approvals, time limits, and strong audit trails. Troubleshooting will focus on identifying privilege creep, unused elevated groups, and “temporary” entitlements that quietly become permanent. Produced by BareMetalCyber.com, where you’ll find more cyber audio courses, books, and information to strengthen your educational path. Also, if you want to stay up to date with the latest news, visit DailyCyber.News for a newsletter you can use, and a daily podcast you can commute with.
