We are happy to announce about Microsoft Secure Score new integration with Microsoft 365 Defender Unified Role-based Access Control (RBAC) permissions model.
Previously, only Azure Active Directory global roles (such as Global Administrators) could access Microsoft Secure Score. Now, you’ll have the option to control access and grant granular permissions for the Microsoft Secure Score experience as part of the Unified RBAC model.
[When this will happen:]
Rollout will begin in mid-August 2023 and is expected to be complete by late August 2023.
[How this will affect your organization:]
Within this Unified RBAC model, you can create a custom role, include the new Secure Score permissions (located under “Security Posture” category) and select specific data sources (i.e. Defender for Endpoint, Defender for Office, Defender for Identity) assigned users will have selected permissions for. After selecting data sources, users will see Secure Score data for the data sources they have assigned permissions for.
As part of the available data sources, you will also find the “Secure Score – Additional data sources” option, including this data source as part of the assignment, will allow access to additional data within the Secure score dashboard.
[What you need to do to prepare:]
Note: In order to benefit from this new permissions model, you will have to opt-in to the new Unified RBAC model, as it is not active by default in your tenant (unless you have already activated it). Learn more about the Unified RBAC permissions model here.
