Access Review & Entitlement Audit

Grounded in: CIS Controls v8 (Control 5 — Account Management, Control 6 — Access Control Management), NIST SP 800-53 Rev. 5 AC family (AC-2 Account Management, AC-5 Separation of Duties, AC-6 Least Privilege, AC-17 Remote Access)

When to Use

If a target is provided via arguments, focus the review on: $ARGUMENTS

Invoke this skill when:

• Performing quarterly or semi-annual access certification campaigns
• Auditing user entitlements for least privilege compliance
• Investigating orphaned accounts (owner departed, no reassignment)
• Detecting role explosion (excessive number of roles with overlapping permissions)
• Validating segregation of duties (SoD) controls
• Preparing for SOC 2, ISO 27001, PCI DSS, or HIPAA audits that require evidence of access reviews
• Responding to audit findings related to excessive or inappropriate access