I'm aware that in SIR we can isolate the admin role, which seems to work well.
How are others managing the fact that users with admin role implicitly have access to Major Security Incidents? As there seems to be no ability to isolate the admin role like there is with SIR.
