Home/Glossary/Privileged Access Management (PAM)

Privileged Access Management (PAM)

A framework for securing and auditing accounts with elevated permissions, such as admins, service accounts, and break-glass users.

Identity & Access ManagementAlso called: "privileged identity management", "PIM"

PAM reduces the risk of high-impact compromise by governing how privileged identities are issued and monitored.

Core capabilities

  • Vaulting and rotating privileged credentials.
  • Session recording for administrative activity.
  • Just-in-time elevation with approval workflows.
  • Analytics that flag unusual privileged behavior.

Quick wins

  • Replace standing admin accounts with temporary elevation.
  • Monitor service accounts for unused or risky permissions.
  • Integrate PAM events into your SIEM for centralized visibility.

Related Tools

Related Articles

View all articles
30 Cloud Security Tips for 2026: Essential Best Practices for Every Skill Level

30 Cloud Security Tips for 2026: Essential Best Practices for Every Skill Level

Master cloud security with 30 actionable tips covering AWS, Azure, and GCP.

Read article →
Vulnerability Management & Patch Prioritization Workflow

Vulnerability Management & Patch Prioritization Workflow

Master the complete vulnerability management lifecycle with risk-based patch prioritization. From discovery to remediation, learn how to protect your infrastructure before attackers strike.

Read article →
Data Breach Response & Notification Workflow | GDPR & HIPAA

Data Breach Response & Notification Workflow | GDPR & HIPAA

Master the complete data breach response workflow from detection to recovery. This comprehensive guide covers GDPR 72-hour notification, HIPAA breach reporting, forensic investigation, regulatory compliance, and customer notification strategies with practical tools and legal frameworks.

Read article →
SOC 2 Readiness & Audit Preparation Workflow | Complete

SOC 2 Readiness & Audit Preparation Workflow | Complete

Complete SOC 2 readiness and audit preparation workflow for SaaS companies. Covers Trust Service Criteria selection, gap assessment, control implementation, evidence collection, Type I vs Type II decisions, and cost estimates for first-time certification.

Read article →

Explore More Identity & Access Management

View all terms

Authentication vs Authorization

Authentication verifies who you are, while authorization determines what you can do.

Read more →

FIDO2

An open authentication standard that enables passwordless and phishing-resistant login using hardware security keys or platform authenticators.

Read more →

Identity and Access Management (IAM)

The policies and technologies used to verify identities, govern permissions, and log access across systems.

Read more →

Kerberos

A network authentication protocol that uses secret-key cryptography and trusted third parties to verify user and service identities without transmitting passwords.

Read more →

LDAP (Lightweight Directory Access Protocol)

An open, vendor-neutral protocol for accessing and maintaining distributed directory services over a network.

Read more →

Multi-Factor Authentication (MFA)

An authentication method that requires users to provide two or more verification factors to gain access.

Read more →
Back to glossary