Least Privilege Access Control Policy (AC-6)

As part of a broader security architecture for SnowBe Online, I authored a policy specifically focused on enforcing the principle of least privilege (PLP). This policy, mapped to NIST 800-53 control AC-6, ensures that users and systems are granted only the minimum access necessary to perform their roles.

Key elements include the implementation of Role-Based Access Control (RBAC), SIEM-based log monitoring, and strict protocols for privilege escalation and revocation. The policy assigns responsibilities to IT personnel, department heads, and users, ensuring organizational alignment and accountability.
This deliverable not only formalizes access management standards but also serves as preventative control against internal and external threats--reducing attack surface and increasing audit readiness.