This report begins with a review of segregation of duties and sensitive access controls, and reasons why both subjects are often misunderstood by the audit and compliance community. It then offers an 11-step method for assessing business processes to find gaps where SoD and SA controls are necessary, establishing those controls, testing them for effectiveness, and documenting the process for outside review. The book includes (as appendices) several Excel spreadsheets giving examples of SoD and SA rules, and of capability listings to help assess control risks in key business processes.
- Webcasts & Training
Our annual gathering has been recognized as the premier peer-to-peer compliance event to spotlight compliance leaders and their programs. Sessions include Q&As, break-out panels, and practitioner-only workshops.
- Resource Library
- Special Reports
Learn from the latest headlines and protect your company today
- Archegos collapse: $20 billion in losses, but a win for compliance
- SEC awards $50M to two whistleblowers in second-largest payout
- Ex-PCAOB risk officer files lawsuit alleging harassment, discrimination
- FTC gearing up for aggressive oversight of antitrust, M&A
- More navigation items