System security is the first line of defence against fraud and error but it doesn’t prevent the most determined from undertaking malicious activities. Policing is sometimes the only way to detect breaches of policy or the use of inappropriate settings.
ACL as a power tool can help to perform a battery of tests. Perhaps you want to identify changes to key security parameters, or correlate the various system security logs? Perhaps you want to investigate suspicious activity, e.g. unusual times, frequency and duration to generate leads. Maybe it’s the monitoring of incoming and outgoing activity by IP address that’s important to you?
ACL can also help to validate system-level controls in databases, operating systems and applications – helping audit staff to police the validity and use of active IDs, to detect shared or reactivated accounts, or those with common or easily broken passwords. Whatever it is you want to do, ACL can help.