When to use this
Use this record when emergency or break-glass privileged access is issued or used.
Related controls
Emergency access record
| Incident/event | System | User | Privilege issued | Reason | Approved by | Start/end time | Actions taken | Review completed? |
|---|---|---|---|---|---|---|---|---|
| TBD | TBD | TBD | TBD | TBD | TBD | TBD | TBD | Yes/No |
Post-use review
- Management notified.
- All actions logged.
- Security controls restored.
- Access revoked.
- Root cause or incident record updated.
- Lessons learned recorded where relevant.
- Template
- Iso27001
- Technological controls
- Privileged access
Note Metadata
Aliases: Break Glass Access Record
Source: 90 Templates/Emergency Privileged Access Record.md
Related Notes
- ISO 27001 A.5.26 - Response to Information Security Incidents
- A.8.2 Audit Evidence Pack
- ISO 27001 A.8.2 - Privileged Access Rights
- A.8 Technological Controls MOC
- A.8 Technological Controls Implementation Guide
- A.8 Technological Controls Implementation Audit Risk Mapping
- A.8.2 Audit Checklist
- Templates MOC