AX Role Based Access & Control

There is a role called Ops Admin in AX and there is a need for Ops Admin team is to add / edit / del users of a specific types called Engineers.

However, in standard Ax if we allow access to system Admin > Users > User, it also allows Ops Admin to control AX users, which is not expected from the Ops Admin team.

Basically, Ops Admin shall only be able to add / del Engineers but not fully control the AX users.

Please suggest how best to handle this scenarios in standard AX?

Regards