IAM-05: Segregation of Duties

CSF v1.1 References:

PF v1.0 References:

Threats Addressed:

Next Version:

Info icon.

The next version of the control set incorporates all or part of this control into: IAM-14: Strong Authentication.

Control Statement

User access policies and procedures shall be established, and supporting business processes and technical measures implemented, for restricting user access as per defined segregation of duties to address business risks associated with a user-role conflict of interest.

[csf.tools Note: For more information on the Cloud Controls Matrix, visit the CSA Cloud Controls Matrix Homepage.]

Cloud Control Matrix is Copyright 2023 Cloud Security Alliance.