Principle of Least Privilege
The security guideline is that a user should only have access to the system, tools, and data that is required for them to do their work. The level of access significantly aids attackers in escalating privilege once they get into an environment. The better you are at limiting access and privilege, the more likely you will contain an attacker if they do get in.