At the moment it is only possible to set permissions on static event groups.
It should be possible to set permissions on dynamic event groups too. Here you could use regular expressions to set the permissions. (For instance, is the dynamic group name like the name of the authorization profile, or is the dynamic group name like the TrueSight login name, ...)
We are using the dynamic event groups to filter the events after event slots. (Which department is responsible for which event). A department is responsible for hardware events, an other department for the application and so on.
But in the moment, all departments see all events. And that should not be. Each department should only see your own assigned events.