diff --git a/docs/en/enterprise-edition/rn/look-ahead-planned-updates-prisma-cloud/look-ahead-secure-the-infrastructure.adoc b/docs/en/enterprise-edition/rn/look-ahead-planned-updates-prisma-cloud/look-ahead-secure-the-infrastructure.adoc
index 2712ee3ee4..4e7d0d4d31 100644
--- a/docs/en/enterprise-edition/rn/look-ahead-planned-updates-prisma-cloud/look-ahead-secure-the-infrastructure.adoc
+++ b/docs/en/enterprise-edition/rn/look-ahead-planned-updates-prisma-cloud/look-ahead-secure-the-infrastructure.adoc
@@ -275,6 +275,19 @@ config from cloud.resource where cloud.type = 'gcp' AND api.name = 'gcloud-compu
 |*Service*
 |*API Details*
 
+|*Amazon Athena*
+//RLP-153371
+|*aws-athena-table-metadata*
+
+Additional permissions needed:
+
+* `athena:ListDataCatalogs`
+* `athena:ListDatabases`
+* `athena:ListTableMetadata`
+* `glue:GetTables`
+
+The Security Audit role includes the permissions.
+
 |tt:[Update] *Amazon CodePipeline*
 //RLP-153691
 |*aws-code-pipeline-pipeline*
@@ -300,6 +313,17 @@ The Security Audit role only includes the `cognito-idp:ListUserPools` and `cogni
 
 You must manually update the `cognito-idp:GetGroup` permission in the CFT template and enable it.
 
+|*Amazon Cognito*
+//RLP-153820
+|*aws-cognito-user*
+
+Additional permissions needed:
+
+* `cognito-idp:ListUserPools`
+* `cognito-idp:ListUsers`
+
+The Security Audit role includes the permissions.
+
 
 |*AWS Directory Service*
 //RLP-153814
@@ -322,6 +346,16 @@ Additional permission needed:
 
 The Security Audit role includes the permission.
 
+|*Amazon EC2*
+//RLP-153463
+|*aws-ec2-serial-console-access-status*
+
+Additional permission needed:
+
+* `ec2:GetSerialConsoleAccessStatus`
+
+The Security Audit role does not include the above permission. You must manually update the CFT template to enable it.
+
 |tt:[Update] *Amazon EC2*
 //RLP-153817
 
@@ -443,6 +477,16 @@ Additional permissions needed:
 
 The Security Audit role includes the permissions.
 
+|*AWS IAM Identity Center*
+//RLP-153622
+|*aws-iam-identity-center-instance*
+
+Additional permission needed:
+
+* `sso:ListInstances`
+
+The Security Audit role includes the permission.
+
 |*Amazon Lightsail*
 //RLP-153464
 |*aws-lightsail-container-service*