Review security permissions for GCI ES plugin.

This issue aim at remembering us that we need to review our [plugin-security.policy](https://github.com/gcinterceptor/gci-java/blob/master/elasticsearch-plugin/src/main/resources/plugin-security.policy) file and think about if we need to specify the given permission for our plugin only or if our policy already does this.