the following are control activities IT auditors would evaluate and test for physical security and accesss, except for,: a$.$ A physical access control mechanism is used to restrict and record access to the building and to the computer room. b$.$ Bath and$/$or online processing is defined, timely executed, and monitored for successful completion c$.$ Physical access is authorized, monitored $,$ and restricted to individuals who require such access to perform their job duties. d$.$User access reviews occur frequently to support current physical access granted to the IT environment, and the data center