With a NSQL based portlet you can just use the security construct @WHERE:PARAM:USER_ID@ ;
i.e.
where srm_resources.user_id = @WHERE:PARAM:USER_ID@
in the NSQL to restrict the data to the logged on user.
Other similar NSQL constructs exist - read the studio manual for information.