A development team lead is tasked with managing access for IAM principals within the team. Initially, she granted users excessive privileges to encourage experimentation and innovation. As the project progresses, she now aims to minimize these permissions to only what is necessary for the team to complete their tasks efficiently.

Which of the following methods will assist her in identifying any unused IAM roles and subsequently removing them without causing any disruption to services?