We need to have security configuration to maintain access level per Environment not project Only

Ex: giving access to Production team to Deploy and use LCS tools for Production environment only, while other teams such as testing should deal with Sandbox environment only, read access to production environments will be additional advantage