While we've all heard to buzz words of "zero-trust" and "cyber kill-chain", it's important to consider processes and practices that will help limit both the occurrence and impact of security incidents related to authorization sprawl. This problem manifests itself in different ways (toxic permissions, insider threats, SOD violations etc.). A seasoned group of CISOs will discuss ways to proactively minimize this risk while still enabling end-users to be productive.