Glossary
Privileged access management (PAM)
The set of tools that protect and monitor the most powerful accounts, such as those of administrators.
PAM secures high-privilege accounts (administrators, technical accounts), which are highly coveted by attackers. It stores sensitive passwords in a vault, grants rights only at the moment needed, requires strong authentication and records sessions. By reducing these permanent powerful accesses, it strongly limits the damage of a hack. It is a professionals' tool.
See also
Data protection officer (DPO)The person tasked with ensuring GDPR compliance in an organisation and advising on data protection.Data protection impact assessment (DPIA)A mandatory study to identify and reduce the risks of a data processing operation that is sensitive for people.EBIOS Risk ManagerA French method, led by ANSSI, for analysing and managing an organisation's cyber risks.ISSP (security policy)The reference document that sets an organisation's security rules, objectives and responsibilities.