def rule(event):
    if all(
        [
            event.deep_get("LoggedByService", default="") == "AAD Management UX",
            event.deep_get("Category", default="") == "Policy",
            event.deep_get("OperationName", default="")
            == "Update User Risk and MFA Registration Policy",
        ]
    ):
        return True
    return False
