Microsoft Purview · Compliance Manager
Compliance Manager Contributors
Create assessments and perform work to implement improvement actions in Microsoft Purview Compliance Manager. Cannot manage templates or update test status.
Scope: Improvement action implementation and assessment contribution
Permissions
- Compliance Manager Contribution - Create assessments and perform work to implement improvement actions
- Compliance Manager Reader - View all Compliance Manager content
- Data Connector Admin - Configure data connectors
Common use cases
- Implementing technical improvement actions (e.g., configuring MFA, DLP policies)
- Documenting compliance evidence and implementation notes
- Contributing to assessment completion across IT and security teams
- Performing remediation work assigned by Assessors
Best practices
- Use for IT staff who implement technical controls
- Assign to subject matter experts for specific improvement actions
- Document implementation details for audit trail
- Coordinate with Assessors to confirm completion
Security considerations
- Cannot create templates or update test status
- Implementation work may affect production configurations
- Lower privilege than Assessor role
Common questions
When should I assign the Compliance Manager Contributors role?
Assign Compliance Manager Contributors when you need to: Implementing technical improvement actions (e.g., configuring MFA, DLP policies); Documenting compliance evidence and implementation notes; Contributing to assessment completion across IT and security teams; and Performing remediation work assigned by Assessors. It is part of Microsoft Purview and should be granted as a least-privilege alternative to broader roles like Global Administrator.
What can someone with the Compliance Manager Contributors role do?
The Compliance Manager Contributors role grants permissions including: Compliance Manager Contribution - Create assessments and perform work to implement improvement actions; Compliance Manager Reader - View all Compliance Manager content; and Data Connector Admin - Configure data connectors. See the Permissions section above for the full list.
What are the security risks of the Compliance Manager Contributors role?
Key considerations when assigning Compliance Manager Contributors: Cannot create templates or update test status; Implementation work may affect production configurations; and Lower privilege than Assessor role. Review the Security considerations section before assignment, and pair with Privileged Identity Management (PIM) for just-in-time access where possible.