Delegating access increases your security posture by limiting reasons to log in to your AWS organizations management account, until it doesn't. I've seen multiple customers go through the work of setting this up, only to find out they still need to log in to the management account
organizations
A collection of 1 post