User-based access controls are steadily becoming and integral component of the network security infrastructure and threat prevention measures. This brief explains why establishing and implementing a user-based security strategy is not a single team’s effort, and should be rooted in the business leadership team’s position on cybercrime prevention.