Workload Automation 11.3.6 SP5 introduced a new EEM security policy type, as-sendevent.
It will check if a user has access to issue specific EVENTS via the sendevent command.
For more details see:
https://docops.ca.com/ca-wla-ae-wcc/11-4-2/en/release-information/ae-release-information/ae-release-11-3-6-sp5/new-features-11-3-6-sp5