Roles Roles control access to features and capabilities in applications and modules. After access has been granted to a role, all of the groups or users assigned to the role are granted the access. Roles can contain other roles, and any access granted to a role is granted to any role that contains it. For a complete list of the roles included with the ServiceNow platform, see Base system roles. Create a roleCreate a role to control access to features and capabilities in applications and modules. Base system rolesAdministrators can assign one or more base system user roles to grant access to base system platform features and applications.Contextual securityThe contextual security manager provides incredible flexibility and power to protect information by controlling read/write/create/delete authorization.Category users and stakeholdersUsers who take assessments are individuals in your organization who have specific knowledge of the assessment categories and the records being assessed. A person who is qualified to answer assessment questions from metrics in a specific category becomes a category user when associated to that category. A category user then becomes a stakeholder when associated to a specific assessable record.Designate a role delegatorAdministrators (users with the admin role) can grant users the right to be role delegators. Security jump start - ACL rulesThe Security Jump Start (ACL Rules) Plugin is installed automatically on all new instances.Audit user rolesChanges to user roles are automatically tracked in the Audit Roles [sys_audit_role] table.