38 seeded user × system grants across production DB, AWS root, GitHub admin, Stripe admin, Vault secrets, Datadog admin, Snowflake admin. Each grant carries last-login, is-dormant flag, role-vs-job-title check. Reviewer attests or revokes; the audit trail forms the SOC2 evidence packet.
| User | System | Role | Last login | Granted | Flags | Action |
|---|