This document provides a learning objective to examine and describe IT infrastructure policies based on a scenario. The scenario describes working for a large healthcare organization that requires identifying user access policies for employees with server, mainframe, and RSA access. The manager is impressed with previous work and asks to research and write descriptions of policies affecting these domains in a table with an introduction answering who, what, when, why and a conclusion justifying the selections and referencing research.