Role, profile, and User Privileges

Only a superuser can create, alter or drop a:

By default, only the superuser can grant or revoke a role to another user or role. A user or role can be given the privilege to grant and revoke a role by using the WITH ADMIN OPTION clause of the GRANT statement.

For details on granting and revoking role privileges, see GRANT (Role) and REVOKE (Role) in the SQL Reference Manual.