Home/Glossary/Privileged Access Management (PAM)

Privileged Access Management (PAM)

A framework for securing and auditing accounts with elevated permissions, such as admins, service accounts, and break-glass users.

Identity & Access ManagementAlso called: "privileged identity management", "PIM"

PAM reduces the risk of high-impact compromise by governing how privileged identities are issued and monitored.

Core capabilities

  • Vaulting and rotating privileged credentials.
  • Session recording for administrative activity.
  • Just-in-time elevation with approval workflows.
  • Analytics that flag unusual privileged behavior.

Quick wins

  • Replace standing admin accounts with temporary elevation.
  • Monitor service accounts for unused or risky permissions.
  • Integrate PAM events into your SIEM for centralized visibility.

Related Tools

Related Articles

View all articles
Azure AD Is Now Microsoft Entra ID: What Changed and What It Means

Azure AD Is Now Microsoft Entra ID: What Changed and What It Means

Microsoft renamed Azure Active Directory to Microsoft Entra ID. Learn what changed, what stayed the same, and how this affects your organization's identity management.

Read article →
Password Policy Best Practices for Enterprise Security in 2026

Password Policy Best Practices for Enterprise Security in 2026

Modern password policies have evolved beyond complexity requirements. Learn how to implement passwordless authentication, passkeys, and risk-based policies that improve both security and user experience.

Read article →
30 Cloud Security Tips for 2026: Essential Best Practices for Every Skill Level

30 Cloud Security Tips for 2026: Essential Best Practices for Every Skill Level

Master cloud security with 30 actionable tips covering AWS, Azure, and GCP.

Read article →
Principle of Least Privilege: A Complete Guide for Cloud Security

Principle of Least Privilege: A Complete Guide for Cloud Security

Learn how the principle of least privilege prevents cloud security breaches. Practical implementation strategies for AWS IAM, Azure RBAC, and GCP.

Read article →

Explore More Identity & Access Management

View all terms

Authentication vs Authorization

Authentication verifies who you are, while authorization determines what you can do.

Read more →

FIDO2

An open authentication standard that enables passwordless and phishing-resistant login using hardware security keys or platform authenticators.

Read more →

Identity and Access Management (IAM)

The policies and technologies used to verify identities, govern permissions, and log access across systems.

Read more →

Kerberos

A network authentication protocol that uses secret-key cryptography and trusted third parties to verify user and service identities without transmitting passwords.

Read more →

LDAP (Lightweight Directory Access Protocol)

An open, vendor-neutral protocol for accessing and maintaining distributed directory services over a network.

Read more →

Multi-Factor Authentication (MFA)

An authentication method that requires users to provide two or more verification factors to gain access.

Read more →
Back to glossary