Bottom Line: Just-In-Time Access replaces permanent access with automatically expiring time-limited permissions and reduces the exploitation window for compromised cloud identities from months to hours.
Developers often receive administrative rights in cloud sandboxes that remain active for months and are never revoked – a critical attack surface for cyberattacks. Just-In-Time Access (JIT) automatically disables these permissions after set time periods, significantly lowering the compromised-identity risk.
Access rights management in modern cloud environments (AWS, Azure, Google Cloud) still follows a legacy model in many organizations: developers and business units receive administrative permissions for temporary test sandboxes, but these rights are never actively revoked. The result is so-called standing privileges – unlimited access that remains unused in the system for months.
The numbers underscore the operational threat: the CrowdStrike Global Threat Report documents a rise in cloud intrusions of over 37 percent year-on-year in 2025–2026. In approximately 70 percent of cases, attackers do not exploit complex software vulnerabilities but rather already compromised identities. The IBM Cost of a Data Breach Report puts data breaches involving cloud handling at over five million US dollars. A hacked developer account with standing privileges enables lateral movement throughout the entire network.
Just-In-Time Access inverts this model: users receive no administrative rights by default. Only when there is concrete need do they request a time-limited privilege escalation. After approval, the privilege is automatically withdrawn after predefined hours or minutes – without manual intervention by security teams. This turns every permission into a short-lived transaction rather than a permanent attribute.
Companies like Sourcegraph have implemented this shift productively and report shortened approval processes of just minutes instead of multi-hour manual releases. More relevant for CISOs is the control gain: every escalation is logged, the attack window in case of identity theft shrinks from months to hours, and the operational blast radius in a security incident falls significantly lower.
Source: www.it-daily.net · Published 8 June 2026
Lumi AI News — AI-assisted curation pursuant to Article 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.6.5.