Use transaction security policies, now generally available, to monitor changes made in permission sets and permission set groups. If a change doesn’t comply with internal usage, compliance, or security policies, create policies to notify you and block changes. You can also track multi-factor authentication for user interface logins.
Where: This change applies to Lightning Experience and Salesforce Classic in Enterprise, Performance, Unlimited, and Developer editions where Event Monitoring is enabled.