<img src="https://ws.zoominfo.com/pixel/6169bf9791429100154fc0a2" width="1" height="1" style="display: none;">
Search
Close icon
Search bar icon
Search
Close icon
Search bar icon
Blog / Access

The Access Management Bill of Rights

See StrongDM in action →
The Access Management Bill of Rights
Tim Prendergast

Written by

Chief Executive Officer (CEO)
StrongDM

Last updated on:

September 6, 2024

Reading time:

2 minutes

Contents

Secure Access Made Simple

Built for Security. Loved by Devs.

  • Free Trial — No Credit Card Needed
  • Full Access to All Features
  • Trusted by the Fortune 100, early startups, and everyone in between
Free Trial gartner-spotlight

I'm continuously shocked by how poorly the PAM industry has treated customers to date. Shame on CyberArk, Delinea, and all the rest of you for persisting with such predatory models.

  • The business model is "squeeze the blood out of them, then squeeze harder."
  • The deployment model is "you'll never stop paying our Professional Services fees if you ever want a deployment."
  • The support model is "you'll pay maintenance forever because you can't keep this stuff alive without us, much less upgrade it."
  • The adoption model is "it's supposed to be painful, you'll get used to it."

The world deserves better. YOU deserve better. 

Here's my bill of rights for admins and privileged users:

  1. You have the right to a product that covers your entire infrastructure, not just the 4 things your PAM or secret store decided are enough.
  2. You have the right to streamlined, simple deployment without the need for professional services.
  3. You have the right to not fear, but embrace your PAM partner because they actually care about solving your problems and not the balance in your bank account.
  4. You have the right to say "YES!" because anyone can use the technology to do their job without suffering.
  5. You have the right to get time back because automation, cloud-native concepts, and resiliency were design principles from day one.
  6. You have the right to full visibility of activities, and should have the option to connect it all to your monitoring tools so that you have the security awareness to react to events and make good decisions.
  7. You have a right to simply and easily produce access-related evidence for audits and investigations.
  8. As a privileged user, you have a right to securely and easily connect to the infrastructure needed to do your job using your preferred tools or methods.
  9. You have a right to easily add new technologies to your stack, knowing that it will not take weeks or months of work to be added to your privileged access management tool.
  10. You have the right to be confident that all access tied to a specific user has been deprovisioned when they change teams or get a new role.
  11. You have the right to easily request access to the tools you need, and have those requests approved and provisioned, or declined, within a reasonable timeframe–not days or weeks.
  12. You have the right to an easily-managed identity lifecycle across your infrastructure, supported by open standards such as SCIM, OIDC, and SAML, so you can meet compliance requirements.

You deserve better than the solutions provided by PAM providers. And this bill of rights is the starting point for demanding it.

Your PAM shouldn't scare you and your users to death. Make a change—StrongDM is the Zero Trust PAM platform (a better, more modern and flexible PAM) that puts you back in control of your business. Our G2 customer reviews can't be beat!
Tim Prendergast

About the Author

, Chief Executive Officer (CEO), before joining StrongDM, Tim founded Evident.io—the first real-time API-based cloud security platform. In 2018, Palo Alto Networks (PANW) acquired Evident.io, and Tim joined the executive team at PANW. As the first Chief Cloud Officer, Tim helped outline GTM and product strategy with the C-suite for the cloud business. Tim also served as the principal architect for Adobe's Cloud Team, designing and scaling elastic AWS infrastructure to spark digital transformation across the industry. Tim’s love for innovation drives his interest as an investor in true market disrupters. He enjoys mentoring startup founders and serving as an advisor.

💙 this post?
Then get all that StrongDM goodness, right in your inbox.

You May Also Like

Palo Alto and CyberArk Deal: A $25B Bet on Yesterday’s PAM
Palo Alto and CyberArk Deal: A $25B Bet on Yesterday’s PAM
Palo Alto’s $25B CyberArk acquisition reshapes PAM. Learn why legacy vaults and duct-taped platforms fall short and what modern Zero Trust requires.
Non-Human Identities & Secrets Sprawl: Why Vaults Aren’t Enough
Non-Human Identities & Secrets Sprawl: Why Vaults Aren’t Enough
Non-human identities are fueling secrets sprawl, and vaults alone can’t stop it. Learn why NHIs are the primary source of leaked secrets, the limits of traditional secret stores, and how StrongDM governs access in real time without exposing credentials.
What Is Access Certification? Process, Benefits & Best Practices
What Is Access Certification? Process, Benefits & Best Practices
Access certification is more than a checkbox; it’s how you prove and enforce least privilege at scale. It ensures every user, system, and role has only the access they need, nothing more. In this guide, you’ll learn how to run access certifications that satisfy auditors, reduce insider threats, and clean up outdated privileges. You’ll explore common types (manual vs. automated, user-based vs. resource-based), challenges, and how modern teams streamline the process with real-time visibility and automation.
What Is Authorization? Types, Examples, and How It Works
What Is Authorization? Types, Examples, and How It Works
Authorization isn’t just about who gets in, it’s about what they can do once they’re inside. And that’s where most breaches happen. Whether you're enforcing RBAC, ABAC, or context-based policies, effective authorization ensures users only access what they need, no more, no less. This post unpacks how authorization works, compares key models, and explores best practices for enforcing least privilege at scale.
From Legacy PAM to Identity Firewall: The Shift is Here
From Legacy PAM to Identity Firewall: The Shift is Here
More than just an incremental improvement, the Identity Firewall is an architectural transformation that enables both security and velocity in modern environments. Organizations ready to lead this transformation will build competitive advantages that extend far beyond security compliance.