Which compliance frameworks does this skill support?

The skill provides guidance aligned with SOC 2, PCI DSS, HIPAA, and SOX requirements, focusing on the quarterly review mandates for high-privilege accounts.

How does it handle service accounts?

It provides logic for identifying service accounts via Service Principal Names (SPN) and validating their permissions against actual business requirements.

Can I use this for Cloud IAM auditing?

Yes, it includes specific workflows for AWS (AdministratorAccess), Azure (Global Administrator), and GCP (Owner/Editor) roles.

Does it help with remediation of excessive permissions?

Yes, it includes a decision matrix for revoking access, rotating credentials, or transitioning standing privileges to a Just-In-Time (JIT) model.

Privileged Account Access Review

Name: Privileged Account Access Review
Author: micsapp

bymicsapp

0•

Security & Testing

Conducts systematic audits of high-privilege accounts to enforce least privilege and ensure compliance with security frameworks.

This skill provides a structured framework for auditing privileged accounts across Domain Active Directory, Cloud IAM, and database environments. It guides users through account discovery, business justification validation, and remediation steps to align with compliance standards like SOC 2 and PCI DSS. By implementing a four-pillar approach—Discover, Validate, Remediate, and Monitor—it helps security professionals identify orphaned accounts, manage service principal names, and transition to Just-In-Time (JIT) access models, effectively reducing the organizational attack surface.

Key Features

01Least privilege validation and remediation guidance

02Service account and SPN auditing logic

03Multi-platform account discovery for AD, AWS, Azure, GCP, and SQL

04Just-In-Time (JIT) access transition patterns

05Compliance-ready review workflows for SOC 2, PCI DSS, and HIPAA

060 GitHub stars

Use Cases

01Quarterly compliance audits for regulatory security requirements

02Cleanup of orphaned or inactive administrative credentials in hybrid environments

03Security assessments during incident response to identify lateral movement risks

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add micsapp/micstec-skills performing-privileged-account-access-review

For use in Claude.ai and ChatGPT

Key Features

01Least privilege validation and remediation guidance

02Service account and SPN auditing logic

03Multi-platform account discovery for AD, AWS, Azure, GCP, and SQL

04Just-In-Time (JIT) access transition patterns

05Compliance-ready review workflows for SOC 2, PCI DSS, and HIPAA

060 GitHub stars

Use Cases

01Quarterly compliance audits for regulatory security requirements

02Cleanup of orphaned or inactive administrative credentials in hybrid environments

03Security assessments during incident response to identify lateral movement risks

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add micsapp/micstec-skills performing-privileged-account-access-review

For use in Claude.ai and ChatGPT