Five Golden Rules for Contractors to Meet New DoD Cyber Mandate
3.1 3.1.7 Access Control
https://federalnewsnetwork.com/all-news/2018/01/five-golden-rules-for-contractors-to-meet-new-dod-cyber-mandate/
This article from Federal News Network provides an overview of key controls that are essential to NIST SP 800-171 compliance: access controls, awareness and training, audit and accountability, configuration management, and identification and authentication.
https://www.nccoe.nist.gov/sites/default/files/legacy-files/fs-pam-project-description-draft.pdf
This article demonstrates a PAM capability that effectively protects, monitors,
and manages privileged account access to include their life cycle management, authentication, authorization, auditing, and access controls.
https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=AC-06
NIST resource that defines the requirements for the principle of least privilege
Palantir Blog – Windows Privilege Abuse: Auditing, Detection, and Defense
3.1 3.1.7 Access Control
https://blog.palantir.com/windows-privilege-abuse-auditing-detection-and-defense-3078a403d74e
This article provides an in-depth overview of how to audit, detect and defend against specific privilege abuse actions in Windows.
