Control Purpose
Query-first control card for A.8.2 Privileged Access Rights. Use the linked detailed note for mentor-style implementation and audit guidance.
Risk Logic
Related Risks
No published risk scenario is linked to this control yet. Create or link a risk note under the risk knowledge base before treating this control as fully mapped.
Detailed Note
Evidence Required
See A.8.2 Audit Evidence Pack.
ISO 27005 Link
Map this control to privilege misuse, shared admin accounts, unlogged admin activity, emergency access abuse, unauthorized configuration change, and stale privilege risk.
- Iso27001
- ISO27002
- Annex a
- Control
- Privileged access
Note Metadata
Aliases: ISO27001-A.8.2
Source: 06-Control-Knowledge-Base/ISO27001-A.8.2-Privileged-Access-Rights.md
Control dependency map
How this control connects to work products
Generated from the static research graph. It shows navigation and evidence dependencies; it is not an audit conclusion.
2
links
Requirement context
Primary control text, framework notes, or adjacent controls this note points to.
Evidence required
Evidence packs and proof records that support auditability.
Graph-sourced resources
Templates and evidence
Auditor evidence packs
Evidence collections and audit-facing verification material.