Each Role Based Access Control (RBAC) role may have an associated Role Owner. The owner might be asked to periodically review users who have been attached to the Role. The Role Owner might also be asked to authorize changes that impact the Role, such as adding or removing resources to it.

Return to IT Security Concepts