Tiering / Segmentation

Tiering in the context of IT security refers to the strategy of segmenting accounts and resources into different levels or "tiers", according to their usefulness and expected access; in order to reduce security risks. Each tier has specific access levels and permissions, thus limiting exposure to attacks and lateral movement of attackers within the network.

Tiering allows :

• Account segmentation: divide user and administrator accounts into different tiers according to their access levels and roles.
• Access control: impose strict access controls for each tier, ensuring that users only have the access they need to perform their tasks.
• Monitoring and auditing: set up regular monitoring and audits for each level to detect any suspicious or unauthorized activity.

Tiering therefore makes it possible to limit enormously the impact of administrator or user errors, or even the possible actions of a hacker who has penetrated your IS.