Hi Torrey ,
You need to go to SUIM--> then need to go to the roles by complex selection criteria --> Then you need to put * in roles and * in users , and give authorization object name in the object field .
You will then get the o/p of roles which are having that authorization object, then maintain the roles accordingly.
Or you can use RSUSR070 program in se38 .
Regards
Rj