Microsoft is updating alert policies in the Office 365 Security & Compliance Center with more granular role-based access control. With this feature, admins will have more granular control over which alerts can be viewed by whom in the Office 365 Security & Compliance Center. After the release, roles a user has will determine what category of alerts they have access to. For example, a Compliance admin will no longer have access to Threat management or Mail flow alerts, which helps them better focus on triaging and investigating compliance related alerts, like Data governance, Data loss prevention, etc.
The rollout will be starting on February 19,
When admins go to the View alerts page in the Office 365 Security & Compliance Center, they can see all alerts regardless of the category of alerts if they have the “ManageAlerts” or “ViewOnlyManageAlerts” role.
With this change, they will need more specific roles in addition to “ManageAlerts” or “ViewOnlyManageAlerts” in order to see specific categories of alerts.
For users or admins who need to access alerts, make sure they have the correct roles assigned in the Office 365 Security & Compliance Center before the change rolls out.