Applying the principle of least privilege is hard, even for organizations with high incentives to be secure.
It requires constant testing of security boundaries and the monitoring of privileged access. But the benefits are huge: It will help you defend against external attacks and insider threats, comply with regulatory requirements, and simplify change and configuration management.
