Use Just In Time Elevated Access
This week, I came across a SaaS product called Indent. I have no affiliation to them nor have I used them (yet).
One thing that their product reminded me of is the need for what I’m calling just-in-time elevated access.
For example, I used to work at a company where when you were going on PagerDuty, you had to make a ticket to get approval for elevated access to production systems for your rotation.
Indent’s product automates this and makes it easier to set up. Everywhere I’ve been has had a cobbled-together, custom solution.
This pattern of having audited, elevated access is how I would recommend you lock down production systems if you work in a regulated industry like I do.
Join the 80/20 DevOps Newsletter
If you're an engineering leader or developer, you should subscribe to my 80/20 DevOps Newsletter. Give me 1 minute of your day, and I'll teach you essential DevOps skills. I cover topics like Kubernetes, AWS, Infrastructure as Code, and more.
Not sure yet? Check out the archive.
Unsubscribe at any time.