AUCTC 2026

From Standing Privilege to Just-In-Time Access: Implementing Microsoft PIM in a Hybrid Higher-Ed Environment

Speaker: Abolaji Ogunmola

Higher education institutions remain prime targets for identity-based attacks, yet many campuses still rely on standing administrative privileges and broad Global Administrator assignments. As Microsoft continues enforcing stronger identity protections, institutions must rethink how privileged access is governed and secured.

This session presents a real-world case study of transitioning from permanent administrative roles to a Just-In-Time (JIT) access model using Microsoft Entra Privileged Identity Management (PIM) in a hybrid higher education environment. Attendees will learn how we reduced standing privilege, implemented role-based eligible groups, secured emergency access accounts, aligned Conditional Access policies, and navigated operational and cultural challenges during rollout.

Beyond technical configuration, this session explores governance decisions, audit visibility, and lessons learned while balancing security with operational efficiency. The focus is on practical implementation and actionable insights that other institutions can adopt regardless of size.

This session may also incorporate shared lessons and perspectives from other Atlantic Canadian institutions implementing similar privileged access governance models, reinforcing a collaborative regional approach to cybersecurity resilience.

Learning Objectives:

• Attendees will be able to:
• Understand the risks associated with standing administrative privileges in hybrid higher education environments.
• Design a Just-In-Time privileged access model using Microsoft Entra Privileged Identity Management (PIM).
• Implement secure emergency access (break-glass) accounts aligned with modern identity security practices.
• Apply governance and operational strategies to successfully transition to a least-privilege model.
• Identify common implementation challenges and lessons learned to support their own institutional rollout

Speaker Bio:

Abolaji Ogunmola is an IT Administrator with Integrated Technology Services at Holland College in Prince Edward Island. He specializes in identity governance, Microsoft 365 security, hybrid infrastructure, and cloud modernization within higher education. Abolaji has led initiatives involving Privileged Identity Management (PIM), Conditional Access, break-glass access design, and cybersecurity resilience planning. He is passionate about translating enterprise security frameworks into practical, real-world implementations that strengthen institutional security while supporting operational efficiency.