Organization owners have several features to help them keep their projects and data secure. If you're the owner of an organization, you should regularly review your organization's audit log, member 2FA status, and application settings to ensure that no unauthorized or malicious activity has occurred.
An outside collaborator is a person who isn't explicitly a member of your organization, but who has Read, Write, or Admin permissions to one or more repositories in your organization.
Owners and repository admins can remove an outside collaborator's access to a repository.
If a current member of your organization only needs access to certain repositories, such as consultants or temporary employees, you can convert them to an outside collaborator.
You can see which members of your organization should enable two-factor authentication. If a malicious user gains access to your organization, they'll be able to access your repositories and settings.
The audit log allows organization admins to quickly review the actions performed by members of your organization. It includes details such as who performed the action, what the action was, and when it was performed.
Review the applications managed by your organization to verify that no new applications with expansive permissions were authorized and that the callback URLs haven't changed.