I am looking at https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB0790987 and trying to manipulate it in a way to solve my issue. I have members of all other assignment groups taking incidents (re-assigning) from my 7 assignment groups. The only people I want to be able to affect the incidents in those 7 assignment groups are the members of the 7 assignment groups. The solution works well for a single assignment group. The only deviation I have made is to the condition of the business rule. !gs.hasRole("admin") || !gs.hasRole("noc_user")

I added the role "noc_user" and assigned the new role to the 7 groups I own. I thought I could somehow loop through an array of the 7 assignment groups but, I'm not clear on what needs to be returned so that anyone who is a member of the 7 groups will see the incidents and no one else will unless the incidents are no longer in one of the 7.

I don't know that I fully understand what needs to be returned here and in the case of multiple groups how to meet that need.

(function executeRule(current, previous /*null when async*/ ) {
var grp = current.addNullQuery('assignment_group').addOrCondition('assignment_group','!=','<sys_id of the group to be restricted for other users>');
})(current, previous);