I am looking for detailed documentation as to what the Security Function access does under role. I would like to see what None/View/Modify to differentiate and to determine what level is needed. We have Service Catalog, PAM, and CABI and want to make certain we provide the right Security permissions for each role. What does providing "modify" give them they are not under an Admin role?