There has to be more granularity when it comes to security rights for Core Roles. For example, the Attendance Manager Role includes the ability to view, edit, and delete a student's test scores. When I clone the role to try and 'water' it down, I can remove the ability to view test scores but then Attendance Managers cannot do other necessary functions. I could provide numerous other examples but I hope this one makes my point. Education Edge was very granular when it came to roles/rights and it was much clearer.