IAC-21.2 - Non-Privileged Access for Non-Security Functions

Mechanisms exist to prohibit privileged users from using privileged accounts, while performing non-security functions.