Answer-What is the 'Principle of Least Privilege' (PoLP) in cybersecurity?

PoLP minimizes the attack surface which means if an account is compromised, the attacker gains only limited access. Implementation of PoLP can be done through Role-Based Access Control RBAC, Just-In-Time JIT access for privileged accounts, regular access reviews and deprovisioning and separation of duties no single person can both initiate and approve a transaction. In banks a teller has access to transaction processing but not to system administration or loan approval. DBA accounts should not have internet access. Privileged Access Management PAM solutions enforce PoLP for admin accounts.