Glossary
Access Review
Access reviews check if people still need their access - like going through keys and making sure only current employees have copies.
What is Access Review?
A periodic process of reviewing and certifying that user access rights remain appropriate and comply with least privilege principles.
Why Should You Care?
Access creep is common as roles change. Regular reviews are required by SOC 2, HIPAA, and other frameworks.
Is your business exposed?
Real-World Example
Quarterly access reviews identify 15% of users with access to systems they no longer need due to role changes.
How to Protect Against Access Review
- 1.
Implement quarterly access certification
- 2.
Create process for manager attestation
Related Terms
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required