Term · 4. Roles, Policies & Access Rights
Privileged Account Discovery
Definition
Automated scanning of systems to discover privileged accounts (admin, root, service accounts with elevated rights). Critical first step in PAM program — you can't protect what you don't know exists. Includes local admin accounts on endpoints/servers, cloud admin roles, application-specific superuser accounts, and forgotten service accounts.
- Synonyms
-
- Account Discovery
- PAM Discovery
- Privileged Account Inventory
- Application
- Regulatory: NIS2 Directive — EU 2022/2555 · NIST SP 800-63 (Digital Identity Guidelines)
- Standards & regulations
-
- NIS2
- NIST
Related terms
-
Privileged Session Management (PSM)
PAM capability that records, monitors, and analyzes sessions involving privileged credentials — SSH sessions to servers, …
-
CMMC (Cybersecurity Maturity Model Certification) (CMMC)
US Department of Defense framework certifying cybersecurity practices of Defense Industrial Base (DIB) contractors handl …
-
Privileged Account Monitoring
Continuous oversight of privileged account activity — login events, command execution, session metadata, configuration c …
-
Bastion Host
Hardened gateway server providing controlled access to internal systems — users connect to bastion, then jump to target …
-
CSA CCoP (Cybersecurity Code of Practice for CII, Singapore) (CSA CCoP)
Singapore Cyber Security Agency's mandatory Code of Practice for Critical Information Infrastructure (CII) operators acr …
-
MAS TRM (Monetary Authority of Singapore — Technology Risk Management Guidelines) (MAS TRM)
Singapore central bank's prescriptive guidelines (revised 2021) for technology risk management at financial institutions …