While most enterprise security teams focus on preventing compromises, the complexity of cloud environments means vulnerabilities and misconfigurations are never going to be fully eliminated. Access entitlements should be a major area of focus for security teams to reduce risk of lateral movement and goes hand-in-hand with the recognized need for zero trust and least privilege security.