Create a role group for "DLP Operations team"
Large organization often have dedicated "DLP Ops team" who receives incident emails and need to use Content Search for issue investigation. This team is typically not SP admins so they don't have direct access to the sites to see the violating content.
one way to allow them to do their job effectively is to grant them access to perform Content Search and preview content. This way they can search for the violating item (using syntax like Path:"https://<file_URL>" and preview/download the file.
To do this they need the following roles in SCC
- Compliance Search
Would be great to have an OOB role group that includes the above permission.