Table of Contents
IriusRisk Team
|
The Threat Modeling Experts
February 21, 2025

Role & Permissions Management

What are the new features?

Our enhanced Role Management capability introduces a dynamic, multi-tier approach to user access control within threat models. This update allows for flexible, project-specific role assignments which we have summarized as three key areas:

  1. Users - Role Splitting and Default Project Roles
  2. Business Units - Centralized role assignments within the BU section
  3. Project Access - Tailored project access with individual and BU overrides

The details  

Users

You can have a default project role and have this set as default in your User Profile, however, you can be assigned different roles and privileges on specific Projects where necessary. All of this supports users to only see and edit what is necessary to them. 

Business Units (BU) 

When you configure at the BU level, you can have a group of users who are all configured to individual roles, then apply that to a project. For example if you had a team with developers as well as managers, perhaps the developers have basic access and the managers have higher levels of permissions.

Project Access - previously known as Ownership

The Project Access is ideal for Managers coordinating teams, projects and more. You can add an individual, or a whole business unit to your project, depending on what your requirements are and what teams are involved. 

Who is it for?

This feature is especially beneficial for organizations with larger teams or varied project responsibilities. It caters to environments where a single user might need different access levels—for instance, acting as a developer on one project, an admin for another project, and a viewer on another. 

What are the benefits?

  • Granularity in Role Assignments: Tailor access rights down to individual users within a project, ensuring precise control
  • Centralized Management: Manage roles directly from the BU section, streamlining administrative tasks and allowing these roles to be applied repeatedly on multiple projects
  • Enhanced Flexibility: Enable role overrides and custom permissions, so users can maintain necessary workflow functions without manual reassignments