Principle of Least Privilege

The Principle of Least Privilege means giving people only the access they need to do their specific jobs, and nothing more. For example, an employee handling billing shouldn’t have access to sensitive HR data. This approach minimizes the risk of accidental mistakes, data breaches, or misuse by limiting what each person can see or do. It’s a fundamental security strategy that helps protect sensitive information and systems by ensuring privileges are no more extensive than necessary for the task at hand.