The answer is a certified information systems security personnel in any given IT project fulfillment environment. The person (with CISO) develop a well-structured IT acceptable use policies that would be embedded into the web development by the website developer/programmer. The system administrator will then stand in gap to enforce the standards through ACLs/AD structures and Group security policies in a role based or separation of duties approach to all users.
