James,
Welcome to B 
B!
Sounds good for run time security. you shoudl use a mandatory universe filter in conjunction with this.
You need to look at universe / folder / report security too.
Please have a look at this post to get started and post any questions:-
https://bobj-board.org/t/119849
Cheers,
Mark.
Mak 1 
(BOB member since 2005-01-06)