My team manages our PagerDuty account for our entire organization. One of our objectives is to ensure that our PagerDuty account settings mirror our CMDB. So our team are global admins and we do not provision users to the manager role at the account level. We like that we can give our users the flexible role of responder at the account level and manager at the team level, but we have recently encountered an issue with this level of access still giving our users a little too much access.
We’d like to request a new flexible role on a team between responder and manager that can modify rules and rulesets for their team (but not create rulesets or delete them), can create/modify/delete schedules and escalation policies, and can modify settings on their services (but not create or delete services).
Users that are set in a flexible role of responder at the account level and manager on the team level are currently able to create and delete services and add integrations to their services and they are not doing these things according to our processes or following our standards and it is causing us some heartburn.
Is this level of access feasible to add to the road map?