The existing control relating to the centralised storage of break glass account event logs was merged into the existing control relating to collecting break glass account event logs. [ISM-1613, ISM-1715]
Dec 2021
Use of break glass accounts is logged.
The terminology used for logging and monitoring both unprivileged access and break glass access has been aligned with the terminology used for logging and monitoring privileged access within the Essential Eight Maturity Model.
Aug 2020
Break glass accounts are monitored and audited for unauthorised use or modification.
Six security controls were introduced to cover the secure use of break glass accounts for gaining emergency access to systems.