This implementation automates reporting to verify compliance with GC Cloud Guardrails. SSC and TBS review the results. Cette mise en œuvre automatise la production de rapports afin de vérifier la conformité aux mesures de sécurité infonuagique du GC. SPC et SCT examinent les résultats.
Other
7
stars
4
forks
source link
GR2 | Validation 4 | Privileged Account Management Plan (Least Privilege Role Assignment) #160
dutt0
commented
1 month ago
GR2 |Validation 4 requires documentation to be uploaded to the storage account/ Attestation.
Document Titled "Privileged Account Management Plan". This is an existing control called "Privileged Account Management plan".
Need to determine whether this attestation will be kept in GR2 or moved to GR13.
**assessor note: Looking that least privilege roles are assigned and justified in the departmental Privileged Account Management Plan.