Cyber Resilience – Identity and Access Management Best Practices Document Released by CISA/NSA

CISA and the NSA have released a document titled “Identity and Access Management Recommended Best Practices Guide for Administrators” as part of their work on the Enduring Security Framework working group. These recommended best practices provide system administrators with actionable recommendations to better secure systems from threats to Identity and Access Management (IAM). It addresses threats to IAM that are highly likely, highly impactful, or both. Furthermore, it identifies mitigation areas most effective in reducing the impacts of these threats to IAM. The authors urge organizations to assess their current IAM risk posture due to the popularity of credential compromise and privilege escalation among state-sponsored and criminal actors. Read more at CISA.