Scenario
Changing access controls can have some undesirable effects. Therefore, it is important to carefully consider changes before making them and provide mechanisms to reverse changes if they have unexpected consequences.

Always Fresh management has asked you to develop procedures for changing any access controls. The purpose of these procedures is to ensure that staff:

Understand and document the purpose of each access control change request
Know what access controls were in place before any changes
Get an approval of change by management
Understand the scope of the change, both with respect to users, computers, and objects
Have evaluated the expected impact of the change
Know how to evaluate whether the change meets the goals
Understand how to undo any change if necessary