Access Governance (AG) is an IT security and compliance discipline aimed at minimizing the risks associated with improperly managed user account permissions. 

Role-Based Access Control (RBAC) is the identity management method of preconfiguring structured user access according to each position’s job function and responsibilities (e.g., department, position, location, and other potential factors). The collection of an entire organization’s role-based access controls for each position is referred to as an “authorization matrix”. RBAC is one of the major methods for implementing and enforcing Access Governance.