second tier admin roles and risks

Copper Contributor

I'm trying to get a basic risk context around some lesser known 365 roles:

 

  • Security administrator
  • Helpdesk administrator
  • Billing administrator
  • User administrator
  • Authentication administrator

Could you provide some examples of what 'damage' an individual could do with access to the above roles. Normally I would work off the basic risk concepts such as inappropriate access to sensitive information, loss of service(s) to genuine staff affecting business productivity etc.

1 Reply