It should all be part of the plan 
Personally, I avoid managing service accounts if I possibly can. To many things can break and they should be for a specific purpose so won't have roles added or removed. Its much the same for Groups.
It depends on the auditors requirements, if thats the core driver.
Peter