Ensure user role group changes are reviewed at least weekly
Why This Matters
Regular reviews of role group changes are essential to enforce least privilege and prevent privilege creep, where users accumulate excessive permissions over time. Without oversight, insider threats (intentional or accidental) can exploit elevated roles to cause damage. Weekly reviews ensure accountability and limit the scope of potential malicious activity.
What Aether365 Checks
Aether365 verifies that user role group changes in Microsoft 365 are reviewed at least weekly, as required by CIS benchmarks. This check appears in your Aether365 dashboard under the Microsoft 365 security checks section.