I am trying to decide on how to setup permissions for my company. The two options in my head are permissions based on the team (Server team, desktop support, Security, etc...) and permissions based on tool and tool rights.
For Permissions based on Teams I see myself having the following:
For Tools/Tool rights I see there being more sets but easier to give specific permissions to a group/person:
How are you managing your permissions? Would you change it? Which method would you choose or a different method not mentioned?