Privileged User

A privileged user is anyone with elevated system access rights beyond those of a standard user — system administrators, database administrators, network engineers, and anyone with admin-level credentials. Privileged users can install software, change configurations, access all files, and perform other actions that standard users cannot.

Because privileged accounts have such broad access, they're prime targets for attackers and require extra security measures: dedicated admin accounts (separate from daily-use accounts), multi-factor authentication, session monitoring, and just-in-time access where possible.

Why It Matters

CMMC includes specific requirements for managing privileged accounts. Assessors will verify that privileged users have dedicated admin accounts, use MFA, and that privileged activities are logged and monitored.

Related Resources

NIST 800-53: AC-2(7)
NIST 800-53: AC-6(10)
NIST 800-53: AU-9(4)
NIST 800-53: SC-2(1)
NIST 800-53: SI-3(3)
NIST 800-53: SI-3(4)
NIST 800-53: SI-4(6)
NIST 800-53: SI-4(20)