Some or all of the information on this page might not apply to Cloud de Confiance by S3NS. See Differences from Google Cloud for more details.

Google Threat Intelligence roles and permissions

This page lists the IAM roles and permissions for Google Threat Intelligence. To search through all roles and permissions, see the role and permission index.

Google Threat Intelligence roles

Role Permissions

Role	Permissions
GTI Alert Admin ^Beta (`roles/threatintelligence.alertAdmin`) This role can view and edit all properties of resources.	`resourcemanager.projects.get` `resourcemanager.projects.list` `threatintelligence.*` `threatintelligence.alertdocuments.get` `threatintelligence.alerts.get` `threatintelligence.alerts.list` `threatintelligence.alerts.update` `threatintelligence.configurations.get` `threatintelligence.configurations.list` `threatintelligence.configurations.listRevisions` `threatintelligence.configurations.update` `threatintelligence.findings.get` `threatintelligence.findings.list`
GTI Alert User ^Beta (`roles/threatintelligence.alertUser`) This role can view and edit properties of resources, except for editing configurations and exporting alerts.	`resourcemanager.projects.get` `resourcemanager.projects.list` `threatintelligence.alertdocuments.get` `threatintelligence.alerts.` `threatintelligence.alerts.get` `threatintelligence.alerts.list` `threatintelligence.alerts.update` `threatintelligence.configurations.get` `threatintelligence.configurations.list` `threatintelligence.configurations.listRevisions` `threatintelligence.findings.` `threatintelligence.findings.get` `threatintelligence.findings.list`
CTEM Admin ^Beta (`roles/threatintelligence.ctemAdmin`) This role can view and edit all properties of resources along with the Projects.	`resourcemanager.projects.get` `resourcemanager.projects.list` `threatintelligence.configurations.` `threatintelligence.configurations.get` `threatintelligence.configurations.list` `threatintelligence.configurations.listRevisions` `threatintelligence.configurations.update` `threatintelligence.findings.` `threatintelligence.findings.get` `threatintelligence.findings.list`
CTEM Editor ^Beta (`roles/threatintelligence.ctemEditor`) This role can view and edit all properties of resources.	`resourcemanager.projects.get` `resourcemanager.projects.list` `threatintelligence.configurations.` `threatintelligence.configurations.get` `threatintelligence.configurations.list` `threatintelligence.configurations.listRevisions` `threatintelligence.configurations.update` `threatintelligence.findings.` `threatintelligence.findings.get` `threatintelligence.findings.list`
CTEM Project Admin ^Beta (`roles/threatintelligence.ctemProjectAdmin`) CTEM Project Admin	`resourcemanager.projects.get` `resourcemanager.projects.list` `threatintelligence.configurations.get` `threatintelligence.configurations.list` `threatintelligence.configurations.update` `threatintelligence.findings.*` `threatintelligence.findings.get` `threatintelligence.findings.list`
CTEM Viewer ^Beta (`roles/threatintelligence.ctemViewer`) This role can view all resources.	`resourcemanager.projects.get` `resourcemanager.projects.list` `threatintelligence.configurations.get` `threatintelligence.configurations.list` `threatintelligence.configurations.listRevisions` `threatintelligence.findings.*` `threatintelligence.findings.get` `threatintelligence.findings.list`

GTI Alert Admin ^Beta

(roles/threatintelligence.alertAdmin)

This role can view and edit all properties of resources.

resourcemanager.projects.get

resourcemanager.projects.list

threatintelligence.*

threatintelligence.alertdocuments.get
threatintelligence.alerts.get
threatintelligence.alerts.list
threatintelligence.alerts.update
threatintelligence.configurations.get
threatintelligence.configurations.list
threatintelligence.configurations.listRevisions
threatintelligence.configurations.update
threatintelligence.findings.get
threatintelligence.findings.list

GTI Alert User ^Beta

(roles/threatintelligence.alertUser)

This role can view and edit properties of resources, except for editing configurations and exporting alerts.

resourcemanager.projects.get

resourcemanager.projects.list

threatintelligence.alertdocuments.get

threatintelligence.alerts.*

threatintelligence.alerts.get
threatintelligence.alerts.list
threatintelligence.alerts.update

threatintelligence.configurations.get

threatintelligence.configurations.list

threatintelligence.configurations.listRevisions

threatintelligence.findings.*

threatintelligence.findings.get
threatintelligence.findings.list

CTEM Admin ^Beta

(roles/threatintelligence.ctemAdmin)

This role can view and edit all properties of resources along with the Projects.

resourcemanager.projects.get

resourcemanager.projects.list

threatintelligence.configurations.*

threatintelligence.configurations.get
threatintelligence.configurations.list
threatintelligence.configurations.listRevisions
threatintelligence.configurations.update

threatintelligence.findings.*

threatintelligence.findings.get
threatintelligence.findings.list

CTEM Editor ^Beta

(roles/threatintelligence.ctemEditor)

This role can view and edit all properties of resources.

resourcemanager.projects.get

resourcemanager.projects.list

threatintelligence.configurations.*

threatintelligence.configurations.get
threatintelligence.configurations.list
threatintelligence.configurations.listRevisions
threatintelligence.configurations.update

threatintelligence.findings.*

threatintelligence.findings.get
threatintelligence.findings.list

CTEM Project Admin ^Beta

(roles/threatintelligence.ctemProjectAdmin)

CTEM Project Admin

resourcemanager.projects.get

resourcemanager.projects.list

threatintelligence.configurations.get

threatintelligence.configurations.list

threatintelligence.configurations.update

threatintelligence.findings.*

threatintelligence.findings.get
threatintelligence.findings.list

CTEM Viewer ^Beta

(roles/threatintelligence.ctemViewer)

This role can view all resources.

resourcemanager.projects.get

resourcemanager.projects.list

threatintelligence.configurations.get

threatintelligence.configurations.list

threatintelligence.configurations.listRevisions

threatintelligence.findings.*

threatintelligence.findings.get
threatintelligence.findings.list

Google Threat Intelligence permissions

Permission	Included in roles
`threatintelligence.alertdocuments.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Support User (`roles/iam.supportUser`) GTI Alert Admin (`roles/threatintelligence.alertAdmin`) GTI Alert User (`roles/threatintelligence.alertUser`)
`threatintelligence.alerts.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Support User (`roles/iam.supportUser`) GTI Alert Admin (`roles/threatintelligence.alertAdmin`) GTI Alert User (`roles/threatintelligence.alertUser`)
`threatintelligence.alerts.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`) GTI Alert Admin (`roles/threatintelligence.alertAdmin`) GTI Alert User (`roles/threatintelligence.alertUser`)
`threatintelligence.alerts.update`	Owner (`roles/owner`) Editor (`roles/editor`) GTI Alert Admin (`roles/threatintelligence.alertAdmin`) GTI Alert User (`roles/threatintelligence.alertUser`)
`threatintelligence.configurations.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Support User (`roles/iam.supportUser`) GTI Alert Admin (`roles/threatintelligence.alertAdmin`) GTI Alert User (`roles/threatintelligence.alertUser`) CTEM Admin (`roles/threatintelligence.ctemAdmin`) CTEM Editor (`roles/threatintelligence.ctemEditor`) CTEM Project Admin (`roles/threatintelligence.ctemProjectAdmin`) CTEM Viewer (`roles/threatintelligence.ctemViewer`)
`threatintelligence.configurations.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`) GTI Alert Admin (`roles/threatintelligence.alertAdmin`) GTI Alert User (`roles/threatintelligence.alertUser`) CTEM Admin (`roles/threatintelligence.ctemAdmin`) CTEM Editor (`roles/threatintelligence.ctemEditor`) CTEM Project Admin (`roles/threatintelligence.ctemProjectAdmin`) CTEM Viewer (`roles/threatintelligence.ctemViewer`)
`threatintelligence.configurations.listRevisions`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Support User (`roles/iam.supportUser`) GTI Alert Admin (`roles/threatintelligence.alertAdmin`) GTI Alert User (`roles/threatintelligence.alertUser`) CTEM Admin (`roles/threatintelligence.ctemAdmin`) CTEM Editor (`roles/threatintelligence.ctemEditor`) CTEM Viewer (`roles/threatintelligence.ctemViewer`)
`threatintelligence.configurations.update`	Owner (`roles/owner`) Editor (`roles/editor`) GTI Alert Admin (`roles/threatintelligence.alertAdmin`) CTEM Admin (`roles/threatintelligence.ctemAdmin`) CTEM Editor (`roles/threatintelligence.ctemEditor`) CTEM Project Admin (`roles/threatintelligence.ctemProjectAdmin`)
`threatintelligence.findings.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Support User (`roles/iam.supportUser`) GTI Alert Admin (`roles/threatintelligence.alertAdmin`) GTI Alert User (`roles/threatintelligence.alertUser`) CTEM Admin (`roles/threatintelligence.ctemAdmin`) CTEM Editor (`roles/threatintelligence.ctemEditor`) CTEM Project Admin (`roles/threatintelligence.ctemProjectAdmin`) CTEM Viewer (`roles/threatintelligence.ctemViewer`)
`threatintelligence.findings.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`) GTI Alert Admin (`roles/threatintelligence.alertAdmin`) GTI Alert User (`roles/threatintelligence.alertUser`) CTEM Admin (`roles/threatintelligence.ctemAdmin`) CTEM Editor (`roles/threatintelligence.ctemEditor`) CTEM Project Admin (`roles/threatintelligence.ctemProjectAdmin`) CTEM Viewer (`roles/threatintelligence.ctemViewer`)

Google Threat Intelligence roles and permissions

Google Threat Intelligence roles

GTI Alert Admin ^Beta

GTI Alert User ^Beta

CTEM Admin ^Beta

CTEM Editor ^Beta

CTEM Project Admin ^Beta

CTEM Viewer ^Beta

Google Threat Intelligence permissions

`threatintelligence.alertdocuments.get`

`threatintelligence.alerts.get`

`threatintelligence.alerts.list`

`threatintelligence.alerts.update`

`threatintelligence.configurations.get`

`threatintelligence.configurations.list`

`threatintelligence.configurations.listRevisions`

`threatintelligence.configurations.update`

`threatintelligence.findings.get`

`threatintelligence.findings.list`

Google Threat Intelligence roles and permissions

Google Threat Intelligence roles

GTI Alert Admin Beta

GTI Alert User Beta

CTEM Admin Beta

CTEM Editor Beta

CTEM Project Admin Beta

CTEM Viewer Beta

Google Threat Intelligence permissions

threatintelligence.alertdocuments.get

threatintelligence.alerts.get

threatintelligence.alerts.list

threatintelligence.alerts.update

threatintelligence.configurations.get

threatintelligence.configurations.list

threatintelligence.configurations.listRevisions

threatintelligence.configurations.update

threatintelligence.findings.get

threatintelligence.findings.list

GTI Alert Admin ^Beta

GTI Alert User ^Beta

CTEM Admin ^Beta

CTEM Editor ^Beta

CTEM Project Admin ^Beta

CTEM Viewer ^Beta

`threatintelligence.alertdocuments.get`

`threatintelligence.alerts.get`

`threatintelligence.alerts.list`

`threatintelligence.alerts.update`

`threatintelligence.configurations.get`

`threatintelligence.configurations.list`

`threatintelligence.configurations.listRevisions`

`threatintelligence.configurations.update`

`threatintelligence.findings.get`

`threatintelligence.findings.list`