END-16
Restrict Access To Security Functions
Description
Mechanisms exist to ensure security functions are restricted to authorized individuals and enforce least privilege control requirements for necessary job functions.
Control Question
Does the organization ensure security functions are restricted to authorized individuals and enforce least privilege control requirements for necessary job functions?
Control Metadata
Domain:
Endpoint Security
Validation Cadence:
Annual