5.4: Restrict Administrator Privileges to Dedicated Administrator Accounts
CSF v1.1 References:
PF v1.0 References:
Threats Addressed:
Previous Version:
- Critical Security Controls Version 7.1:
- 4.3: Ensure the Use of Dedicated Administrative Accounts
Control Statement
Restrict administrator privileges to dedicated administrator accounts on enterprise assets. Conduct general computing activities, such as internet browsing, email, and productivity suite use, from the user’s primary, non-privileged account.
[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]