ACCESS CONTROLS: Each month the IT manager runs and reviews a system audit log report of what all employees have accessed within the system during that month. The audit log report typically contains 350 to 500 individual log entries (across 30+ pages). The IT manager has mentioned that he is not very knowledgeable about all the different types of entries that users may post. He is relatively new to Core IT and is still getting to know the business. CHANGE CONTROLS The CFO reviews and approves the monthly master data change log (run by the IT manager) for changes made to employee payroll master data. For the instances tested, there was no evidence of CFO review and approval. The IT manager noted that he had discussed the appropriateness of the changes with the CFO in each instance. Conclude whether the GITCs tested support the effective functioning of the application controls over the payroll software. Justify your answer with reference to each GITC tested.