Which role is typically restricted to viewing reports only in CrowdStrike Falcon?

The Viewer Role in the CrowdStrike Falcon platform is specifically designed for users who need access to view reports and insights without the ability to modify settings, manage endpoints, or perform any actions that could impact the system. This role is essential for users such as executives or team members who need to stay informed on threat intelligence, system performance, and security posture through reports but should not have the authority to change configurations or intervene in incident responses.

By having a defined role like the Viewer Role, organizations can enforce security best practices by limiting the scope of what certain users can see and do within the platform. This allows for a clear separation of duties and helps to minimize the risk of accidental or intentional changes being made by individuals who are not directly involved in operational security tasks. The Viewer Role thus plays a critical part in maintaining a secure and compliant environment.