Security groups are a great way to partition what users can and cannot do with forms and views.
However, the granularity stops there. There are no deluge commands to reference security groups for specific form actions and controls. For example, I have a work-order form process that requires one field to only be editable by admins. If I hide the field in the form, nobody can access it. So the hidden aspect must be a function of who's in my admin group. What this means is that I have to recreate the admin group as a new list in the application. So now I have two things to keep in sync - a group membership and list in my app. This is not appealing.