Skip to main content

Skillber v1.0 is here!

Learn more
On this page

    Privileged Access Management Flashcards

    Checking access...

    Test your understanding of the Privileged Access Management module. Click a card to flip it between question and answer. Use the arrows, keyboard (← →), or swipe on mobile to move through the deck.

    1 / 0
    Question

    What is Privileged Access Management (PAM)?

    Click to reveal answer

    Answer

    PAM protects an organisation's most sensitive assets by securing, managing, and monitoring privileged accounts and access. It specifically focuses on the highest-risk accounts — those with elevated permissions to critical systems.

    Click to see question

    Question

    What percentage of identity attacks target privileged accounts according to Microsoft?

    Click to reveal answer

    Answer

    99% of identity attacks target privileged accounts, making PAM a core requirement for any mature security program.

    Click to see question

    Question

    What are the six core PAM capabilities?

    Click to reveal answer

    Answer

    1. Credential vaulting. 2. Session management. 3. Just-in-time (JIT) access. 4. Least privilege enforcement. 5. Privileged account discovery. 6. Governance and compliance.

    Click to see question

    Question

    How does credential vaulting work?

    Click to reveal answer

    Answer

    Privileged credentials (passwords, SSH keys, API tokens) are stored in a secure, encrypted vault. Users check out credentials on demand rather than knowing them permanently. The vault enforces password rotation, access workflows, and audit trails.

    Click to see question

    Question

    What is Just-In-Time (JIT) access?

    Click to reveal answer

    Answer

    JIT elevates privileges only for the duration of a specific task. After the task completes, privileges are automatically removed. This eliminates standing administrative rights and reduces the attack surface.

    Click to see question

    Question

    What are the three types of privileged session controls?

    Click to reveal answer

    Answer

    Session Recording (video playback for forensic investigation), Session Monitoring (real-time oversight with alerting on suspicious commands), and Session Isolation (proxy-based access preventing direct network connectivity to targets).

    Click to see question

    Question

    What types of accounts does PAM manage?

    Click to reveal answer

    Answer

    IT administrators, database administrators, service accounts (automated processes), application identities (system-to-system auth), cloud administrators, and network engineers.

    Click to see question

    Question

    What is pass-the-hash and how does PAM mitigate it?

    Click to reveal answer

    Answer

    Pass-the-hash is an attack where the attacker reuses an NTLM hash to authenticate. PAM mitigates it through Credential Guard, removing NTLM where possible, and managing local admin credentials through the vault.

    Click to see question

    Question

    What is a break-glass (emergency access) procedure in PAM?

    Click to reveal answer

    Answer

    A designed process that balances security with operational continuity during emergencies. It provides a controlled way to gain privileged access when normal approval workflows cannot be followed, with full audit logging of the emergency access.

    Click to see question

    Question

    What are the five levels of PAM program maturity?

    Click to reveal answer

    Answer

    PAM maturity progresses from initial/ad hoc through defined (documented processes), managed (automated vaulting), measured (continuous monitoring with KPIs), to optimised (predictive analytics and adaptive controls).

    Click to see question

    Question

    What is privileged account discovery?

    Click to reveal answer

    Answer

    Continuous scanning to identify privileged accounts across the enterprise — local admin accounts, domain admin accounts, service accounts and their dependencies, SSH keys and their usage, and cloud IAM roles with elevated permissions.

    Click to see question

    Question

    What compliance frameworks mandate PAM controls?

    Click to reveal answer

    Answer

    SOX (access controls over financial systems), PCI DSS v4.0 (Requirement 8 — MFA for admin access), HIPAA (technical safeguards for ePHI), GDPR (technical measures to protect personal data), ISO 27001 (A.9.2.3 — management of privileged access rights), and NIST SP 800-53 (AC-6 — least privilege).

    Click to see question

    Swipe or use arrows

    Tip

    Review any cards you got wrong by navigating to the corresponding module page for a deeper explanation.