that is responsible for leading portions of the identity management and access control functions as described by industry best practices... d) normal access e) privileged access f) access roles and segregation of duties g) attestations h) identity governance...