Forums

Articles
Create
cancel
Showing results for 
Search instead for 
Did you mean: 

What strategies do you use for managing permissions and roles in large Jira projects?

Jesse Hilton October 1, 2025

How do you keep Jira permissions and roles simple, secure, and scalable when many people are working on the same project?

2 answers

0 votes
Prachi Bolar
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
October 1, 2025

Hello,

Welcome to Community :) 

Use Project Roles as the Foundation

  • Assign permissions to project roles (not individual users or groups) in permission schemes. This allows project admins to manage access at the project level without Jira admin intervention.
  • Define clear roles  Developers, Testers, Project Admin that map to real responsibilities.
  • Add users or groups to roles per project, enabling flexibility

2. Leverage Permission Schemes for Consistency

  • Create permission schemes that define what each role can do, and reuse these schemes across multiple projects that can have same permission scheme
  • Minimize the number of schemes—ideally, use as few as possible to reduce complexity and maintenance overhead.
  • Copy and modify schemes for projects with unique requirement

 

3. Grating Permission

  • Grant only the permissions needed for each role to perform their job.
  • Restrict sensitive permissions (like Delete Issue, Manage Sprints) to trusted roles or individuals.
  • Regularly review and audit permissions to ensure they align with current responsibilities and security policies.

  

4. Implement Issue Security for Sensitive Data

  • Use issue security schemes to restrict access to specific issues within a project 
  • Assign security levels to issues as needed.

 

Thank You,

Prachi

0 votes
Nikola Perisic
Community Champion
October 1, 2025

Hello @Jesse Hilton 

First, I would prefer using project roles rather than groups, because roles are scalable. I would assign users to their specific project roles. For example you have product owner, developer, designer, scrum master. For your permission schemes, you want to grant your product owner the highest and most sensitive permissions:

  • Administer Projects
  • Delete Issues
  • Edit Issues
  • Delete Comments

Everything that is having a higher responsibility, I would assign it to the users with the highest decision making. 

Do you also need some issues to be visible by only some certain project roles? Apply issue security schemes. 

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events