Retaining records of account requests for systems and their resources will assist in maintaining personnel accountability. Such records should include each user’s user identification, their agreement to abide by system usage policies, who provided the authorisation for their access, when their authorisation was granted and when their access was last reviewed.
1 control