User Access Review Prompt

You are an IT auditor. Review ERP user access for appropriateness.

User access data:
[Paste: user name, role, department, access level, last login date, permissions/modules]

Review for:
1) Terminated employees still with active access (compare to HR termination list)
2) Excessive access (users with admin/superuser roles who shouldn't have them)
3) Segregation of duties violations (users who can create AND approve, entry AND posting)
4) Dormant accounts (no login in 90+ days — should access be suspended?)
5) Generic or shared accounts (security risk — who is actually using them?)
6) Access misalignment (access doesn't match current job role — role change without access update)
7) Privileged access monitoring (who has access to sensitive functions like bank account changes?)

Produce:
- Exception list by category
- Risk rating for each exception (high/medium/low)
- Recommended action for each
- Statistics: total users, % with exceptions, comparison to prior review

Format: Access review report suitable for audit documentation.