⚠
BowTie Risk
Assessments
Hazards
Library
Implementations
Guide
← Back
Edit Barrier
Name
Type
Prevention
Mitigation
General
Category
Tags
(comma-separated)
Description
Establish, document, and review access control rules based on business and information security requirements. Access to systems, services, networks, and data shall follow the principles of least privilege and need-to-know, and be revoked promptly when no longer required.
Save changes
Cancel