As the project owner of a Google Cloud Platform (GCP) project, you need to delegate the ability to manage buckets and files in Cloud Storage to your colleagues. To ensure you adhere to Google's recommended best practices for security and access management, which specific IAM roles should you assign to your colleagues?