If you're sure that you will not be needing
su for anyone else you could switch su's permissions to 755 by removing the sticky bit which is there initially.
Once this is done you could change ownership of su by allowing it to be owned by this user who will be
su'ing to root. That way no-one else would be able to use this command.
This though is a dirty way of doing it and might break something else sometime in the future. So you might want to look at
sudo... man sudo
for information and allow the
su command to be run only by this specific user.
If there's a better way of doing this I'd love to hear it.
Cheers
Arvind