Most users do not know how to use the tools given to them. there is no transparency in who knows what.
when enabling people to use systems, dont just leave them for themselves, train and certify internally
create certifications based on training
create a documentation database (not to be confused with documentation on who’s cleared wich training and what systems with wich levels of access/ breakablity they have therefore access to