The user-defined roles feature allows a System Security Officer to simplify the task of granting and preventing access to data.
The System Security Officer can create roles, request object owners to grant privileges to each role, and grant the user-defined roles to individual employees, based on the functions they perform in the organization. The System Security Officer can also revoke user-defined roles granted to the employee.
For more information on user-defined roles, see the Security Administration Guide.