IAM-05: Segregation of Duties

CSF v1.1 References:

PF v1.0 References:

Threats Addressed:

Control Statement

User access policies and procedures shall be established, and supporting business processes and technical measures implemented, for restricting user access as per defined segregation of duties to address business risks associated with a user-role conflict of interest.