alt Hacker NewsEndpoint Detection and Response?
Heck, not giving the person Admin privileges would have sufficed to prevent this. Or better hiring preventing people who install Roblox cheats on work devices...
There is no excuse and no fine line here. Even outside them boasting about SOC 2 Type II, this would be embarrassing for an SME not in the tech sector.
OP was talking about the security team. Not sure what you are proposing?
Do you want to let any applicant be screened by the security team?