We want to put a limit on access rights for users, accounts, and processes to only those required to perform activities and routine. How do we minimize risk of exposure to error by limiting super user and administrator permissions and still maintain security and compliance requirements?