When you assign an actor to an existing Accounting Entity Security Group, running the Security workflow is enough for the new data level security to be applied to the corresponding user.
If a new Accounting Entity or Accounting Entity Group has been created, you must also run the workflow.