def rule(event):
    if all(
        [
            event.deep_get("auditType", "category", default="") == "Permissions",
            event.deep_get("auditType", "action", default="")
            in [
                "Global permission remove request",
                "Global permission removed",
                "Global permission granted",
                "Global permission requested",
            ],
        ]
    ):
        return True
    return False
