[coredog64]

SOX 404 mandates segregation of duties. You literally cannot access prod if you also have access to dev.

Granted, this is only for US public companies, and only for systems that are in scope for your 404 audits.