| At work, we do the following: * User reports the issue to a business analyst via a ticket. * Business analyst confirms the issue, adds any relevant details, and opens a ticket with the technical team. * The technical team creates a script to perform the update and runs it in the 'support' database (which is refreshed nightly from Production) * Business analyst validates results * User validates the results * Technical team logs a Change Request, it is discussed at the next Change Advisory Board meeting, then the script is run during the next change window (weekly). If it's an emergency, we can run it the same day. * The Database Administration team runs the script in Production It sounds like a heavy weight process, but with multiple people involved and actions logged at every step of the way it's a very safe and auditable process. TL;DR: A small number of trusted people have the required access, there is a fair amount of business process built around using this access. |