Microsoft announces 16 new Azure Active Directory (Azure AD) lower-privileged roles are available today in preview to help admins improve security by decreasing the number of Global administrators. Microsoft also added new Authentication administrator and Privileged authentication administrator roles that come with granular permissions. The list of new roles includes the Global reader role supported across Microsoft 365 services, a role which enables one to view all settings and administrative info, with possible uses in planning, audit, and investigation tasks.Microsoft also announced in August that its Azure AD Identity Protection algorithms’ accuracy has been increased by 100%, while the false-positive rate decreased by roughly 30%.
Source: https://www.bleepingcomputer.com/news/microsoft/microsoft-improves-azure-active-directory-security-with-new-roles/