Systems and methods for computer system security authorization interfaces are described, including a non-transitory computer readable medium having computer executable instructions that when executed cause a processor to direct a directory server to create a position group, the directory server storing position-access permissions assigned to a plurality of permission groups, and to assign the position group as a member within the permission groups; and to assign a username to the position group, thereby associating the position group with the person and assigning the position-access permissions to the person. The position groups contain no usernames and are each associated with no more than one person at any one time. An interface application may allow a user to communicate with a directory server to manage position-access permissions within a directory service domain based on positions within an organizational structure of an organization, rather than on usernames.