Term · 11. Risk & Compliance
Remediation Rem
Definition
Action taken to correct an identified identity risk or policy violation — disable orphan account, revoke excessive entitlement, fix SoD conflict, force password rotation, terminate suspicious session. May be automated (rule-triggered) or manual (admin task). Speed of remediation is key metric.
- Application
- MidPoint: Remediation is an action to eliminate violation of a policy, or a non-compliance with regulation or a standard.
Related terms
-
Audit Trail
Chronological record of identity events — authentication, authorization decisions, provisioning actions, configuration c …
-
Risk Assessment (RA)
Systematic process to identify, analyze, and evaluate identity-related risks. Outputs: risk register with likelihood × i …
-
CMMC (Cybersecurity Maturity Model Certification) (CMMC)
US Department of Defense framework certifying cybersecurity practices of Defense Industrial Base (DIB) contractors handl …
-
FedRAMP (Federal Risk and Authorization Management Program) (FedRAMP)
US government program standardising security assessment and authorization of cloud services used by federal agencies. Th …
-
Non-Human Identity (NHI)
Identities for service accounts, API keys, OAuth client secrets, machine certificates, workload identities (AWS IAM role …
-
Audit
Independent examination of identity controls, processes, and records to verify compliance with policy and regulatory req …