Security groups are hard-coded in iMIS. You cannot create new security groups. You can only add one or more system-defined security groups to a user record to define general reporting access. See Security Administration.
After you create an output process, you can set permissions for that specific process. See To set user permissions for an output process.