Term · 4. Roles, Policies & Access Rights

Privileged Session Management PSM

IDM/IGA Domain

Identity Security PAM DORA NIS2 NIST PCI DSS SWIFT CSCF HIPAA SOX

Definition

PAM capability that records, monitors, and analyzes sessions involving privileged credentials — SSH sessions to servers, RDP to Windows admin, database admin connections. Provides forensic evidence, real-time anomaly detection, and compliance audit trails. Required by PCI DSS, HIPAA, SOX for privileged access oversight.

Synonyms

PSM
Session brokering

Application: Regulatory: DORA — EU 2022/2554 · NIS2 Directive — EU 2022/2555 · NIST SP 800-63 (Digital Identity Guidelines) · PCI DSS v4.0.1 Req. 7-8 · SWIFT CSCF v2025

Standards & regulations

DORA
NIS2
NIST
PCI
SWIFT

Related terms

Audit Trail

Chronological record of identity events — authentication, authorization decisions, provisioning actions, configuration c …
Privileged Account (PA)

Account with elevated rights to administer systems, modify configurations, access sensitive data, or bypass standard con …
Audit

Independent examination of identity controls, processes, and records to verify compliance with policy and regulatory req …
Privileged Account Discovery

Automated scanning of systems to discover privileged accounts (admin, root, service accounts with elevated rights). Crit …
Privileged Account Monitoring

Continuous oversight of privileged account activity — login events, command execution, session metadata, configuration c …
Bastion Host

Hardened gateway server providing controlled access to internal systems — users connect to bastion, then jump to target …

← Back to glossary · Open in main list