Resource Manager enables you to control who has access to specific actions for your organization. It natively integrates role-based access control (RBAC) into the management platform and applies that access control to all services in your resource group. You can add users to pre-defined platform and resource-specific roles and apply those roles to a subscription, resource group, or other resource to limit access. For example, you can take advantage of the pre-defined role called Reader that permits users to view resources but not edit them. You add users in your organization that need this type of access to the Reader role and apply the role to the subscription, resource group or resource. Other platform roles include Owner, Contributor, and User Access Administrator.
Mai Ali's Technical Blog 