You are a security professional for a large private health care organization. Users have access to file and application servers as well as data storage facilities that contain customer health information and personally identifiable information (PII). Your organization needs to create user access policies and provide them to its employees. Sean your manager asks you to write a report detailing relevant user access policies. He needs you to research a generic template and use that as a starting point from which to move forward.