Inside DigitalOcean’s SOX Compliance Playbook
  • Talks

Lock and Key: Closing the Door on Group Sprawl

/images/lock-and-key-webinar-2.webp

Managing access through groups can quickly spiral out of control, leading to privilege creep, over-provisioning, and security vulnerabilities. In this webinar, we explore the pitfalls of traditional group-based access controls and how modern approaches—like just-in-time (JIT) access and dynamic approval policies—can reduce risk and improve scalability.

Featured speaker Ben Godard, former red teamer and now Head of Security at Spotnana, shares his insights on Spotnana’s journey to taming groups and moving to least privilege. He dives into practical solutions for decluttering groups and demos workflows that can help secure your environment without slowing down business operations.

What’s covered:

  • The dangers of over-provisioning and privilege creep when using groups to grant access
  • Ben’s step-by-step framework to shrink group sprawl
  • A demo of JIT access and Terraform workflows for AWS