Today, access policy- defining the “ideal state” of who should have access to what- is disjointed, limited, or sometimes nonexistent. Decisions about access are often “punted” to the manager, either via access reviews or request approvals- whether or not they have the information they need to make the right call. Different slices of access policy can exist in provisioning systems, requests approval workflow engines, the minds of Security Engineering teams, or paper policies that are challenging to translate to technical controls. Role-based access control (RBAC) is common, but it doesn’t work well for guest accounts, service accounts, machine identities, and local users. As a result, the business processes that grant and revoke access operate in silos and rarely solve the problem of over-privileged access. Hear how Wynn Resorts is pushing the frontiers today with their proprietary eCARF system, an innovative approach to make access policy “intelligent and universal”. Learn how Wynn is preparing for emerging needs like JIT access, automated removal of unused permissions, and complying with a nonstop parade of regulations around data access.