There is a procedure to use Privileged Access Management in unpredicted and/or emergency situations when access to privileged accounts is required in unanticipated events (privileged or non-privileged).
Passwords are rotated after use of Break Glass Procedure
The CISO and Process Owners are informed of any use of the break-glass procedure.
Specification
Make use of a four-eyes procedure and sealed bags.
ISO 27001 & 27002:2022
A8.2,
A8.15
SURF toetsingskader informatiebeveiliging (NBA-volwassenheidsmodel)
ID.04 Noodtoegang (envelop procedure/breek-het-glasprocedure)