You can also use a combination of user groups and category security permissions to achieve what you want.
Or perhaps this TC is what you want?