First one: what about high security environments, developers can't really go plumbing around in prod willy-nilly like that, can they?!
First of all, if your needs are so high, your super secret shit should not be cropping up in operational data! See lengthy thread:
But as @lizthegrey points out: all the regulations really require is a two-person protocol.
Until your devs can own their code in prod, your teams, your engineers' development, your culture and *certainly* your systems -- they are all broken.