Controlled Use of Administrative Privileges
CIS Control 4
The processes and tools used to track/control/prevent/correct the use, assignment, and configuration of administrative privileges on computers, networks, and applications.
Why is this Critical?
Privileged accounts pose a serious security problem. Anyone who has access has the potential to use those administrative privileges to harm your organization through a number of ways such as altering/deleting data or creating new admin accounts. Privileges need to be inventoried and controlled using solutions that monitor and control access to critical administrative accounts.