An adversary technique where access is established and maintained without immediate disruption. In critical infrastructure, pre-positioning matters because the attacker is preparing for a future event, not just collecting data today. That makes persistence itself a strategic threat.
Expanded Definition
Pre-positioning refers to the deliberate establishment of access, footholds, and operational readiness inside a target environment so that an adversary can act later with minimal delay. In critical infrastructure, the technique is especially dangerous because it shifts the threat from immediate disruption to latent control, where the attacker may wait for a trigger condition, a seasonal event, or a planned operational window. That makes pre-positioning a persistence and readiness problem, not just an intrusion problem.
The concept sits alongside persistence, lateral movement, and staging, but it is narrower than generic persistence because the objective is often future operational impact rather than continuous noisy activity. It also differs from reconnaissance: reconnaissance collects information, while pre-positioning establishes the conditions for later use. Definitions in the industry are still evolving, so some incident reports use the term loosely to describe any long-dwell intrusion. NHI Management Group treats it more precisely as preparation that preserves access and operational advantage over time. The most common misapplication is calling any long-lived compromise pre-positioning, which occurs when no evidence shows the actor was preparing access for a future action.
For defensive framing, see NIST SP 800-53 Rev 5 Security and Privacy Controls, which helps teams translate persistence-related risk into concrete control expectations.
Examples and Use Cases
Implementing detection and response for pre-positioning rigorously often introduces investigation overhead and stricter monitoring, requiring organisations to weigh early threat visibility against alert fatigue and operational disruption.
- An attacker creates dormant accounts and backs them with stolen secrets so access can be activated during a maintenance outage.
- Malware implants are placed on engineering workstations months before a planned operational change, waiting for a trigger to execute.
- Compromised NHI credentials are stored and rotated into place so an adversary can later impersonate automation during a high-trust workflow.
- Access paths are quietly expanded across remote administration tools so the attacker can move quickly when monitoring coverage is reduced.
- Adversaries stage payloads and establish command infrastructure ahead of a disruptive event, reducing the time needed to convert access into impact.
In practice, these patterns are often described in threat reports using operational language rather than a single universal definition. Where teams need a control lens, NIST guidance such as NIST SP 800-53 Rev 5 Security and Privacy Controls is useful for anchoring monitoring, access control, and incident response expectations around the signs of staged adversary activity.
Why It Matters for Security Teams
Pre-positioning matters because the real security failure is not always the initial intrusion, but the hidden preparation that makes later harm faster, cheaper, and harder to stop. Teams that focus only on immediate disruption often miss the early indicators that an adversary is building future leverage. That creates blind spots in monitoring, identity governance, and response planning.
For identity-heavy environments, the term has direct relevance to NHI governance and privileged access. Pre-positioned access may involve service accounts, API keys, certificates, or agent credentials that remain valid long after they should have been revoked. In agentic AI environments, the same logic applies when an attacker stages access to tools, orchestration layers, or retrieval systems so an autonomous system can be abused later. The security issue is not merely unauthorized entry, but retained operational authority.
Teams should therefore watch for unusual credential lifetimes, quiet changes to trust boundaries, and access that appears legitimate but is strategically timed. Organisationally, the cost of missing pre-positioning is that response starts too late, after the adversary has already set the conditions for impact. Security teams typically encounter the true damage only after a disruptive event or coordinated abuse window, at which point pre-positioning becomes operationally unavoidable to investigate.
Standards & Framework Alignment
This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.
OWASP Non-Human Identity Top 10 and OWASP Agentic AI Top 10 address the attack and risk surface, while NIST CSF 2.0, NIST SP 800-53 Rev 5 and NIST SP 800-63 set the governance and control requirements practitioners need to meet.
| Framework | Control / Reference | Relevance |
|---|---|---|
| NIST CSF 2.0 | DE.CM-1 | Continuous monitoring helps detect dormant access and staged compromise activity. |
| NIST SP 800-53 Rev 5 | SI-4 | System monitoring supports detection of hidden footholds and delayed attacker actions. |
| NIST SP 800-63 | Digital identity assurance is relevant where pre-positioned access relies on stolen or replayed credentials. | |
| OWASP Non-Human Identity Top 10 | NHI governance addresses credential persistence and misuse across machine identities. | |
| OWASP Agentic AI Top 10 | Agentic AI security considers pre-staged tool access and latent execution authority. |
Tighten authentication and lifecycle controls so dormant credentials cannot be reused later without detection.
Related resources from NHI Mgmt Group
Deepen Your Knowledge
Reviewed and updated by the NHIMG editorial team on July 11, 2026.
NHI Mgmt Group — the #1 independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org