The administrator can add up to 20 customized roles in this screen.
The predefined SOC roles (such as Tier 1 or Collaborator) can also
be modified here. New roles can be created for various purposes, such as to:
route tasks to specific SOC teams
manage SOC teams' daily workloads
control view permissions
manage cases access permissions
To create a new role:
Go to Settings>Organization>Roles.
Click addAdd on the top right of the screen.
In the Add Role dialog, enter a name for the new role, and select
which additional roles they should have access to. Doing this affects which
cases they can see in the Google Security Operations platform.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-29 UTC."],[[["\u003cp\u003eGoogle SecOps allows Security Analysts to create up to 20 custom roles, as well as modify predefined SOC roles.\u003c/p\u003e\n"],["\u003cp\u003eNew roles can be designed to route tasks, manage workload, control view permissions, and manage case access permissions within the platform.\u003c/p\u003e\n"],["\u003cp\u003eTo create a new role, navigate to Settings > Organizations > Roles and use the Add Role dialog to define the role's name and access.\u003c/p\u003e\n"],["\u003cp\u003eOne role can be designated as the default role, which will have all new cases automatically assigned to it, and cannot be deleted while set as the default.\u003c/p\u003e\n"]]],[],null,["# Work with Roles\n===============\n\nSupported in: \nGoogle secops [SOAR](/chronicle/docs/secops/google-secops-soar-toc) \nThe administrator can add up to 20 customized roles in this screen.\nThe predefined SOC roles (such as Tier 1 or Collaborator) can also\nbe modified here. \nNew roles can be created for various purposes, such as to:\n\n- route tasks to specific SOC teams\n- manage SOC teams' daily workloads\n- control view permissions\n- manage cases access permissions\n\nTo create a new role:\n\n1. Go to **Settings** \\\u003e **Organization** \\\u003e **Roles**.\n2. Click add**Add** on the top right of the screen.\n3. In the **Add Role** dialog, enter a name for the new role, and select which additional roles they should have access to. Doing this affects which cases they can see in the Google Security Operations platform. \n4. Click **Add**. The Role is added to the table.\n\n| **Note:** Click **Edit** to set one of the roles as default. The default role will have all new cases automatically assigned to it. This role cannot be deleted as long as it is set to default.\nFor more information on roles, see [Control access to the platform](/chronicle/docs/soar/admin-tasks/\nadvanced/control-access-to-platform).\n\n**Need more help?** [Get answers from Community members and Google SecOps professionals.](https://security.googlecloudcommunity.com/google-security-operations-2)"]]
