Productivity and security are always in contention. If you put up too many hoops to jump through in the name of security, then users will reject and attempt to circumvent in the name of productivity; and if there is not enough security in the name of productivity, you will have a breach on your hands. The challenge here is how can organizations, especially in the federal space, make informed decisions that promote just enough security while supporting user productivity? How can we make better security decisions based on the context of a privileged action... where the user is, what their behavior is, what their job requires and what potential risk a compromise to that user would have on the organization? What we need is "Adaptive Privilege Access"; an approach by which identity context is used to determine just enough privilege for user productivity while maintaining the security posture agencies demand.