ZIA Admin management scope

Hi
I have a question about how to set admin roles.
So my customer has users all over the world and in some of the countries/department, user names in logs must be obfuscated due to compliance issues. (Let’s say department A has this condition)

I know that u can have settings for obfuscation on “roles” and apply them to specific user admins on “admin management”.
But what we need to do is have all the admins not be able to see the use names for users in department A. So I believe this becomes a problem when admin management scope is set to organization (not department level). Is there any way u can set the admin management scope so that organization level admins cannot see user names for just department A users?