Custom roles enable you to choose the privileges associated with the role so that
you can restrict access to specific pages or actions in SSPM. For example, you
might have a user who needs to monitor SaaS security, but you don’t want them to
make any configuration changes. You also don’t want them to view information
about identity security. For this user, you can create a role that allows a user
to view the dashboard and applications pages. This role can also prevent a user
from onboarding applications and from viewing identity posture information.