Best Practices for Privilege Elevation

[sarahcec]

This needs to be incorporated into the BoK, probably in one of the Intro to Identity articles:

Privilege elevation is a best practice that is used by operators and developers of identity systems to help achieve the principle of least privilege. People should only access high sensitivity resources like live customer data when there is a valid business reason like debugging an issue with the logs of live customer data. It is not appropriate to use elevated permissions when they are not necessary, when the person is merely curious, or to help a friend or family member.

[hlflanagan]

We will reach out to the authors about adding this to Intro to Identity - Part 1 in the section on Privileged Account Management. Make sure to include that "Privilege escalation" is a synonym. Note that some further information will also be added to Intro to Access Management.