Segregation of Duties (SoD) Control Monitoring and Automation - Lessons from Jabil’s Experience

303 results

  1. Segregation of duties: Everything you need to know

    Segregation of Duties (SoD) is a crucial internal control concept adopted across industries to prevent fraud and errors. This blog outlines the evolution from SoD 1.0 to 3.0, highlighting the advancements in technology and automation. SoD 1.0 relies on manual division of responsibilities, prone to limitations and human errors. SoD 2.0 incorporates technology, enhancing efficiency…
  2. How to Validate Segregation of Duties Results

    Upon first running segregation of duties (SoD) reports in SAP BusinessObjects Access Control, management staff can become overloaded with data and assume that the results simply cannot be correct. It is then the responsibility of the owners of SAP BusinessObjects Access Control to prove that the reports are accurate. Step through the process that SAP…...…
  3. Analyze Segregation of Duties in Legacy Systems with Compliance Calibrator

    Reading time: 23 mins

    Starting with Compliance Calibrator 5.1, and continuing with versions 5.2 and 5.3, you can connect Compliance Calibrator to non-SAP systems to perform Segregation of Duties analysis. See how to set up Compliance Calibrator to do this in six steps. Key Concept Compliance Calibrator is one of SAP’s solutions for GRC. It provides real-time controls compliance…...…
  4. Audit-Ready Your Segregation of Duties Remediation Process with User Remediation in RAR

    Discover key tools and process steps to assist in the remediation of risks at the composite role and user level identified by SAP BusinessObjects Access Control Risk Analysis and Remediation. Key Concept The end-game of every segregation of duties review is to have a remediated risk environment. This involves remediating any existing composite roles, which…...…
  5. Start Your Segregation of Duties Risk Mitigation Smart — at the Single Role Level

    Discover key tools and process steps that assist in the remediation of risks identified at the single role level by SAP BusinessObjects Access Control Risk Analysis and Remediation. Key Concept Risk Analysis and Remediation (RAR) is part of SAP BusinessObjects Access Control. This capability helps all key stakeholders work in a collaborative manner to achieve…...…
  6. Why Everyone’s Segregation of Duties Reports are Wrong

    Even without the COVID-19 pandemic, all organizations need to be as efficient as possible when managing Segregation of Duties (SoD) conflicts. SoD reports are flawed and drive inefficiencies in business processes. The flaws also cause organizations to cut corners and limit their visibility to SoD conflicts. By recognizing the issues with your SoD reports, you…
  7. Segregation of Duties (SoD) Control Monitoring and Automation – Lessons from Jabil’s Experience

    Jabil's journey with segregation of duties (SoD) control monitoring and automation has evolved over time to adapt to their growing landscape and compliance requirements. With the expansion of their global presence and diverse customer needs, role and access management across their manufacturing plants became a complex challenge. In 2015, they undertook a significant project to…
  8. Case Study: How to Regain Control Over SAP User Authorizations and Remediate SoD Violations – The Vestas Journey to Secure Segregation of Duties

    Click Here to View the Session Deck. What do you do when you have outdated technology and SAP roles, a lack of ownership and knowledge regarding GRC processes, and significant risk exposure? Hear how Vestas Wind Systems remediated and mitigated SoDs, making it easy to stay compliant. See how their pragmatic change management approach leveraging…...…
  9. Risk Assessment in SAP Against a Cybersecurity Framework

    In part two of the three-part series “Becoming CMMC or NIST Compliant and How to Prove It,” SAPinsider expert Julie Hallett demonstrates for readers how they can assess cybersecurity threats against a cybersecurity framework. In order to effectively evaluate all of the cybersecurity threats and vulnerabilities that a company has, they must first apply a…
  10. Indirect Assignment of Authorizations in SAP ERP HCM

    Reading time: 16 mins

    Learn how to implement position-based authorizations in your organization. Discover the advantages and pitfalls of having position-based authorizations. Key Concept The SAP general authorizations assignment concept is divided into two types: the direct assignment type, in which the user ID is directly assigned to a role, and the indirect assignment type, in which the user…...…