Low privileges by default + elevation option

We’ve discussed security quite a bit since the Kesaya incident and I know that the migration to AWS is holding much of this up. I wanted to add a thought now that was triggered by a ThreatLocker demo. This is what I saw on their screen:
Screenshot 2022-10-26 121354

What if when we logged in to Syncro, we would have a relatively low level of access (no adding or editing scripts for example) and in order to do those riskier activities, we would need to “elevate” our access. Maybe this would involve being at a certain IP or Yubikey.

Hopefully these discussions will be more relevant soon…