Enforcing Least Privilege for Content Management: New Granular Permissions Available on Immersive One

Reduce risk and meet unique managerial needs across your cyber readiness program with an expanded set of granular permissions for content management.

Every security leader faces the same risk: complexity grows with scale. As teams grow, so does the risk of human error or overprivileged access. You need to scale your readiness program without expanding your risk surface. 

To secure the scaling enterprise and ensure the integrity of critical cyber initiatives, you can now deploy distinct, role-based permission sets for content management across the Immersive One platform. This release cleanly separates content creation from user management, allowing you to enforce strict separation of duties and verifiable access control across your entire program.

Achieve “Least Privilege” Content Management with Expanded Granular Controls

Securing the scaling enterprise and ensuring the integrity of critical cyber initiatives requires precision. With this release, you can now deploy distinct, role-based permission sets for content management. This allows you to align platform access directly with organizational responsibility, ensuring users have the exact content management permissions needed to do their jobs—and nothing more. 

These new controls apply to critical content assets within your Immersive One Crisis and Workforce Scenarios, Labs, Collections, and Career Paths. Specifically, you can support a secure, delegated content strategy with these distinct, enhanced, role structures:

• Creator Roles (Least Privilege): Empower users to author content without incurring administrative risk. Across Crisis Scenarios, Workforce Scenarios, Labs, Collections, and Career Paths, users can create and publish new content, but retain management rights only over the specific assets they personally created.
• Manager Roles (High Privilege): Centralize governance and library maintenance. Grant users the ability to view, edit, delete, and publish custom Labs, Collections, and Career Paths created by anyone in the organization. This approach enables efficient auditing and lifecycle management across your entire content library.

Reduce Risk and Support Compliance

The ability to build scenarios and exercises is only valuable if the underlying platform controls can withstand scrutiny and ensure continuous readiness. Here’s how these controls strengthen your governance posture:

• Ensure Segregation of Duties: Satisfy compliance requirements by ensuring that content contributors do not possess unnecessary administrative privileges over the broader user base or organization settings. 
• Prevent Disruption to Cyber Initiatives: Mitigate the risk of accidental edits or deletions to critical content and training plans to ensure continuity. By limiting “edit” capabilities to specific owners and managers, you ensure that complex, high-stakes exercises run on time.
• Control Access to Sensitive Content: Demonstrate compliance maturity by proving that necessary safeguards are in place. You can now verify that content is visible only to its creators and authorized managers, protecting sensitive incident response or training plans from wider organizational view.

Enabling Enterprise Governance with Verifiable Security Controls

For organizations prioritizing platform security and governance, robust access control is not a nice-to-have—it is mandatory. Relying on an over-privileged administration model introduces unnecessary audit risk and organizational friction.

In security, confidence is not a feeling—it’s an auditable control. Take the next step in your governance maturity by verifying that confident, granular content management permissions are in place.

Get Started

Existing customer? Organization Managers can review and update user roles instantly from within your Immersive One platform settings. 

To find out more about Creator and Manager roles, head over to the Help Centre.

New to Immersive One? Learn how we help global enterprises build resilience with verifiable controls—book a demo.

‍