You should push back to the business unit, table level security should be the EXCEPTION and rare. In short they can have it but just for a few tables and with a VERY good explanation why. Often times they don't understand what they are asking for and can't articulate why they "need" it. You are the keeper of the SQL box, you need to make sure they don't do stupid things without a REALLY good reason..

CEWII