In your case the "Schedule Group" will need CONTROL on the resource L2DB1 and "Operators Group" needs UPDATE on the same resource.
See below how you can determine that.
You need to look at the Security Guide, Appendix A Security Tables. Here you will have 4 tables.
* Panel-ID and Command tables will provide you the link between Resource names and panels / commands.
* Function and Service Level Table: here CA provides you the link between what they call Functions and what they call a Service Level.
For example on DB.1 you can ADD,DELETE,DD,PURGE,DELPRRN,FORMAT,LIST,UPD so these actions are called Functions. They will be linked to the a specific Service Level.
ADD >> ADD
DELETE >> DELETE
DD >> DELETE
PURGE >> PURGE
DELPRRN >> UPDATE
FORMAT >> N/A
LIST >> READ
UPD >> UPDATE
* Access Level Translation Table: here CA translates the above Service Level to the different Security Product (RACF, ACF2,Top Secret, ...) access level (so for RACF: NONE, READ, UPDATE, CONTROL, ALTER)
So the Service Level for
ADD is CONTROL
DELETE is CONTROL
UPDATE is UPDATE
...
HTH,
Alx.