If you mean by access the user abiltiy to see issues in a project, then you should make sure that the user does not have browse projects permission for all the projects where the user is not supposed to see issues. He does not have to be in a role or a group to which the permission is granted. More about project permission you can read here:
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
We're bringing product updates and pro tips on teamwork to ten cities around the world.Save your spot