Create a new IAM policy with read-only access in each member account using the OrganizationAccountAccessRole IAM role, and establish a trust relationship between these IAM policies and the security account. Instruct the security team to access the accounts using these IAM policies.

Create a new IAM role with read-only access in each member account using the OrganizationAccountAccessRole IAM role, and establish a trust relationship between these IAM roles and the security account. Instruct the security team to access the accounts using these IAM roles.

Direct the security team to use AWS Security Token Service (AWS STS) to call the AssumeRole API for the OrganizationAccountAccessRole IAM role in the management account from the security account, and use the temporary credentials generated to access the accounts.

Direct the security team to use AWS Security Token Service (AWS STS) to call the AssumeRole API for the OrganizationAccountAccessRole IAM role in each member account from the security account, and use the temporary credentials generated to access the accounts.