Privileged Identity Management (PIM) is a capability within identity management focused on the special requirements of managing highly privileged access. PIM is an information security and governance tool to help companies meet compliance regulations and to prevent system and data breaches through the improper use of privileged accounts. The management of privileged identities is automated with various customized policies and workflows.
Oversight is necessary so that the greater access abilities of super control accounts are not misused or abused. Unmanaged super user accounts can lead to loss or theft of sensitive corporate information, or malware that can compromise the network.
Identity management software often leaves super user accounts totally uncontrolled while enabling advanced privileges on the corporate network. Furthermore, the owners of those accounts often have no formal training in managing them.
Privilege Identity Management is implemented by;
Creating a policy that specifies how super user accounts will be managed and what the account holders should and should not be able to do. Develop a management model that identifies a responsible party to ensure that the above policies are followed. Identify Inventory privileged accounts to determine how extensive the population is and establish tools and processes for management, such as provisioning tools or specialized PIM products.