Disallow editing of certain security groups using Resource based policies

policy.json

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "DisallowEditingGroups",
            "Effect": "Deny",
            "Action": [
                "ec2:AuthorizeSecurityGroupIngress",
                "ec2:AuthorizeSecurityGroupEgress"
            ],
            "Resource": [
                "arn:aws:ec2:region:account:security-group/groupID1",
                "arn:aws:ec2:region:account:security-group/groupID2"
            ]
        }
    ]
}