Issue security - User can see all issues when it seems they should not be able to

Scenario in Question

I have 2 groups of users that interact with a project.

• Users-A should be able to see all issues across the project, create issues, etc.
• Users-B should only be able to see the issues where they are a reporter or watcher, they can create issues (see permissions below)

With my current permissions and issue security scheme both Users-A and Users-B can see all the issues in the project.  I am trying to figure out how to limit Users-B visibilty to what I defined above - so they only see issues where they are the reporter or the watcher.

Roles

• Users-A
• Users-B
• Project 

Project Permissions (that affect Users-A and Users-B)

• Browse Project/View Read-only Workflow/Create Issues:
  • Users-A
  • Users-B
  • Project
• Close Issue/Edit Issue/Manage Watcher/View Voters & Watchers
  • Users-A
  • Reporter 
  • Project
• Transition Issue:
  • Reporter
  • Project
• Add Comment/Edit Own Comment/Create Attachments
  • Users-A
  • Reporter
  • Watcher
  • Project

Issue Security (Default)

• Users-A
• Current Assignee
• Reporter
• User custom field (Watcher)
• Project Role (my team)