Currently, in order to allow developers to access and edit variables, they are also able to edit process steps including disabling them. This means that they are able to disable audit steps before deploying.

If process edit was a separate permission we could split out the ability to edit variables and the ability to edit/change process steps