When a new folio is created, it creates a scope filter. The filter has only permissions for the one who created it. It should be default set to read for the corresponding Jira Project.
When you have access to the Jira project, you can see the issues. This should reflect in the Folio as well. Depending on the folio rights (read or edit) that is already an extra layer of security that is enough. There is no need for a third manual security level in the middle.
|Tempo Products||Tempo Budgets|