Certify SOD Conflict Definitions

Periodic Reviews of SOD Conflict Definitions
Turn periodic SOD policy reviews into a quick process that's easy for the approvers and satisfies the auditors.

 

Internal auditors periodically review SOD conflict definitions to certify that they are necessary and sufficient to support the SOD policies. They certify that any definition changes are authorized. That means SOD compliance reports can be trusted.

Process Efficiency
CSCD can eliminate administrative work usually required to distribute review materials, collect the decisions, and assemble the certification reports. CSCD keeps it all online. External auditors can examine the documentation in the system and generate their own reports.  

 

You get process efficiency, audit accuracy, and continuous visibility.

Ownership of SOD Definitions and Results
There is no need for IT to filter SOD VM definitions for auditors and approvers to review.  Or collect the approvers’ decisions.  Or summarize the results.

 

The entire process can occur within CSCD with audit progress and results available online for participants and stakeholders to view at any time.  It's easy to repeat the process each year.

SOD Violations Manager  reports Segregation of Duties user access violations according to your conflict definitions.  CSCD is the way you ensure that the definitions are right for your enterprise and the SOD reports are meaningful.

Usage - Audit Managers
  • Assign the definitions of revisions, function groups, function group conflicts, and function pair conflicts to individual approvers.
  • Create named conflict definition audits for detailed review.
  • Notify the approvers about audit launches and send reminders as needed.
Usage - Approvers
  • Evaluate the risk of a user performing two conflicting activities within EBS.
  • Organize their work by function groups, function group conflicts, and function pair conflicts to minimize the number of decisions necessary.
  • Set the status of an SOD conflict definition to approved, pending review, or disabled, and enter notes to document the review process and final decision.
  • Upload related documentation files and link them to the SOD Conflict Definition audit.
Features
  • Dashboard graphs to monitor audit progress.
  • Comprehensive interactive reporting for audit managers and approvers.
  • Any type of file can be uploaded as documentation and viewed online within CSCD.
  • No need to extract data and distribute it to reviewers and approvers.
  • Reduced preparation time and effort for external audits.
  • Installation is fast and simple.
  • No additional hardware or Oracle software to purchase.
Results
  • Verification that SOD business policies are accurately reflected in SOD Violations Manager’s conflict definitions, making SOD VM more reliable.
  • Permanent record of all decisions about SOD conflict definitions.
  • External auditors can easily review the internal review processes and the results.
MENU