Currently there is no way to verify who executes a network discovery scan as this information is not logged.
Adding the AuditingActionType to the execution of the network scan would log the user and time of the scan to better investigate any potential un-authorized scans as currently we can only confirm that a scan was ran.
