The answer seems to be as follows:
1) In Login Properties, click on Securables
2) Choose the relevant Server as a Securable
3) grant my colleague the Permission to "view any definition"
This seems to let him see the design of tables, views and Stored Procedures.