Privileged Access: A Journey From Little to Least
Summary
This BrightTALK InfoSec session features Peter Crumpton from NFU Mutual sharing a case study on transitioning an organization from permissive access to least privilege and zero trust. The session covers recognizing risks, defining target operating models, securing funding, and implementing improvements in a hybrid on-premise and cloud environment with legacy systems.
IFF Assessment
FRIEND
The session focuses on improving security posture by reducing privileged access risks, which benefits defenders.
Severity
4.0
Medium
(AI Estimated)
Defender Context
Privileged access management is critical. Defenders need to understand their current privileged access situation, implement controls to reduce unnecessary privileges, and monitor for misuse. Zero trust implementations require continuous validation.