I was looking to see if there were was a way to make a custom role or adjust any of the permissions in the current roles this morning. I noticed a lot of posts related to request specific additions to Roles. It would be extremely helpful to have more granular, customizable role permissions and would help us all maintain our organization's and client's least privilege.

For example, allowing a role to isolate an endpoint but not remove it from isolation without approval, or allowing visibility into ITDR escalations without the ability to close them.

Because each organization defines least privilege differently, this flexibility would be highly beneficial and would improve both security and operational efficiency.

Thank you for considering this request!