Microsoft Purview · Compliance Manager

Compliance Manager Contributors

Create assessments and perform work to implement improvement actions in Microsoft Purview Compliance Manager. Cannot manage templates or update test status.

Scope: Improvement action implementation and assessment contribution

Permissions

  • Compliance Manager Contribution - Create assessments and perform work to implement improvement actions
  • Compliance Manager Reader - View all Compliance Manager content
  • Data Connector Admin - Configure data connectors

Common use cases

  • Implementing technical improvement actions (e.g., configuring MFA, DLP policies)
  • Documenting compliance evidence and implementation notes
  • Contributing to assessment completion across IT and security teams
  • Performing remediation work assigned by Assessors

Best practices

  • Use for IT staff who implement technical controls
  • Assign to subject matter experts for specific improvement actions
  • Document implementation details for audit trail
  • Coordinate with Assessors to confirm completion

Security considerations

  • Cannot create templates or update test status
  • Implementation work may affect production configurations
  • Lower privilege than Assessor role

Common questions

When should I assign the Compliance Manager Contributors role?

Assign Compliance Manager Contributors when you need to: Implementing technical improvement actions (e.g., configuring MFA, DLP policies); Documenting compliance evidence and implementation notes; Contributing to assessment completion across IT and security teams; and Performing remediation work assigned by Assessors. It is part of Microsoft Purview and should be granted as a least-privilege alternative to broader roles like Global Administrator.

What can someone with the Compliance Manager Contributors role do?

The Compliance Manager Contributors role grants permissions including: Compliance Manager Contribution - Create assessments and perform work to implement improvement actions; Compliance Manager Reader - View all Compliance Manager content; and Data Connector Admin - Configure data connectors. See the Permissions section above for the full list.

What are the security risks of the Compliance Manager Contributors role?

Key considerations when assigning Compliance Manager Contributors: Cannot create templates or update test status; Implementation work may affect production configurations; and Lower privilege than Assessor role. Review the Security considerations section before assignment, and pair with Privileged Identity Management (PIM) for just-in-time access where possible.

Official Microsoft Learn documentation →

Open the interactive RBACMap →