The GCP Best Practices doc has this statement;
We recommend collecting users with the same responsibilities into groups and assigning Cloud IAM roles to the groups rather than to individual users.
I assume this refers to Cloud Identity Groups, yes?
Where do I assign Cloud IAM roles to groups?
Thanks
You should be able to create a Google Group with the imported members in Cloud Identity. If you use Google Group, that group must have an email address (normally <grou-name>@<domain>). You can then use this email address in IAM to give access to all people in that group.
See this doc for more info.