Permissions

The Azure CIS v2.0.0 - Section 6 - Networking policy pack requires 4 permissions:

• microsoft.network/networksecuritygroups/read
• microsoft.network/networksecuritygroups/write
• microsoft.network/networkwatchers/delete
• microsoft.network/networkwatchers/flowlogs/write