Identity and Access Management (IAM) Playbooks/Runbooks:
• User Identity Management Runbook: This runbook covers user account provisioning, de-provisioning, and management. It includes best practices for ensuring that only authorized users have access to resources.
• Access Control Policies and Procedures Playbook: This playbook provides guidelines for developing access control policies, role-based access control (RBAC), and enforcing access control measures.
• Authentication and Authorization Runbook: This runbook focuses on authentication methods (e.g., multi-factor authentication) and authorization mechanisms (e.g., discretionary access control) to secure user access.
• Privilege Management Playbook: This playbook addresses the management of privileged accounts, including administrative accounts. It includes strategies for minimizing privilege escalation risks.
• Single Sign-On (SSO) and Federation Runbook: This runbook explains SSO and federation concepts, enabling users to access multiple systems with a single set of credentials.
• Identity Lifecycle Management Playbook: This playbook covers the entire lifecycle of user identities, from creation to retirement, ensuring compliance with policies and regulations.
• IAM Technologies and Solutions Runbook: This runbook discusses various IAM technologies and solutions, such as Identity as a Service (IDaaS), Identity Governance and Administration (IGA), and more.
• Audit Logging and Monitoring Playbook: This playbook outlines the importance of auditing and monitoring user activities and access control changes. It includes guidelines for implementing effective audit trails and alerting mechanisms.
• IAM Compliance and Regulations Runbook: This runbook helps organizations understand and comply with IAM-related regulations and standards, such as GDPR, HIPAA, and NIST.
• Incident Response for IAM Runbook: In the event of IAM-related security incidents, this runbook provides guidance on detecting, responding to, and mitigating identity and access-related threats.
These playbooks and runbooks are valuable resources for professionals preparing for the CISSP exam or working in the field of Identity and Access Management. They offer practical insights into securing user identities, access controls, and managing IAM effectively.
Sources:
• Identity & Access Management (IAM) in CISSP Domain 5 – DestCert
• Official ISC2 Textbooks | Study Guides and Resources – ISC2
• Audit Logging and Monitoring – CISSP Exam Prep – CISSP Exam Prep
• CISSP domain 5: Identity and access management – InfoSec Institute
• CISSP Domain 5: Identity and Access Management – InfoSecTrain