NERC is a not-for-profit international regulatory authority whose mission is to assure the reliability of the bulk power system in North America. The NERC CIP Standards provide a cyber security framework for the identification and protection of BES Cyber Systems. For organizations that are required to be CIP compliant, this report can assist in monitoring user access management and control, which will aid in meeting the CIP-004 R4 and R5 and CIP-007 R5 requirements and measures.