NT domain users rights Audit

I Have to begin procedure of checking my users rights to the shared folders and polices in my domain (I`ve got about 150 users in my domain and about 5NT`s. I`m not domain Admin just IT sec officer.
First of all if someone knows where can I find some kind of white paper about requied minimal rights recomended for organisation witch is responsible for sensitive data such as personal data or banking accounts. I know that there are special requiments from central fe. bank.

What are good progs for such sec audit.