Permissions

The Azure CIS v2.0.0 - Section 6 - Networking policy pack requires 3 permissions:

• microsoft.network/networksecuritygroups/write
• microsoft.network/networkwatchers/delete
• microsoft.network/networkwatchers/flowlogs/write