Your organization uses BigQuery to manage highly sensitive, structured data and must adhere to the "need to know" principle. You need to design an Identity and Access Management (IAM) strategy to meet the requirements for the following roles:

• Business User: Requires access to curated reports.
• Data Engineer: Requires permissions to administer the data lifecycle on the platform.
• Security Operator: Requires the ability to review user activity on the data platform.

What is the appropriate IAM configuration?