We are using SharePoint 2010, which by default comes with the certain permission groups (Owners, Members, Visitors, Viewers, etc.). We have several subsites which correspond to our business units (Underwriting, Claims, Accounting, etc).
Is it best practice to use the standard permission groups, and change the people in those groups as they pertain to the sites, or should we create permission groups relative to the business units? For example Underwriting Owners, Underwriting Viewers, Accounting Owners, Accounting Viewers? Which is easier to maintain long-term?