Isaac has been asked to write his organization’s access control standards. What policy is commonly put in place for service accounts?

It is common practice to prohibit interactive logins to a GUI or shell for service accounts. Use of a service account for interactive logins or attempting to log in as one should be immediately flagged and alerted on as an indicator of compromise (IoC).