IAC-21.1 - Authorize Access to Security Functions

Mechanisms exist to limit access to security functions to explicitly-authorized privileged users.