Role-Based Access Control
RBAC grants permissions to roles, such as admin or analyst, and then assigns users to those roles. Instead of managing permissions per person, administrators manage a small set of roles that map to job functions. This keeps access consistent and makes audits and least-privilege enforcement much easier.