Can we use AWS Lambdas to check if any mandatory policy is not missing for all newly created roles

Question

how can we make sure that a particular policy ( say S3 bucket access restriction policy ) is attached to all newly created Roles.

Can we write a Lambda that gets triggere