creator/Anthropic-Cybersecurity-Skills
1
0
Fork 0
mirror of https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git synced 2026-06-12 14:14:56 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
d5f3fa32486ea335db802d68fe2147fa2da69583
Anthropic-Cybersecurity-Skills/skills/implementing-just-in-time-access-provisioning/references/standards.md
T

1.1 KiB
Raw Blame History

Standards and References - Just-In-Time Access Provisioning

NIST Standards

  • NIST SP 800-207: Zero Trust Architecture - Section 3 (Logical Components)
  • NIST SP 800-53 Rev 5:
    • AC-2(2): Automated Temporary and Emergency Account Management
    • AC-2(3): Disable Accounts
    • AC-6: Least Privilege
    • AC-6(5): Privileged Accounts
  • NIST SP 1800-35: Implementing a Zero Trust Architecture

Zero Trust Frameworks

  • CISA Zero Trust Maturity Model: Identity pillar - dynamic access provisioning
  • DoD Zero Trust Reference Architecture: JIT/JEA requirements
  • Forrester ZTX: Extended Zero Trust with JIT access

Tools and Platforms

  • Microsoft Entra PIM: Privileged Identity Management with JIT elevation
  • CyberArk JIT: Privileged access on-demand
  • SailPoint: Identity governance with access request workflows
  • HashiCorp Boundary: Just-in-time access to infrastructure
  • StrongDM: Dynamic access management

Compliance

  • SOX: Least privilege for financial system access
  • PCI DSS 4.0: Requirement 7.2 - Access based on need to know
  • HIPAA: Minimum necessary standard for PHI access
Reference in New Issue View Git Blame Copy Permalink