This report begins with a review of segregation of duties and sensitive access controls, and reasons why both subjects are often misunderstood by the audit and compliance community. It then offers an 11-step method for assessing business processes to find gaps where SoD and SA controls are necessary, establishing those controls, testing them for effectiveness, and documenting the process for outside review. The book includes (as appendices) several Excel spreadsheets giving examples of SoD and SA rules, and of capability listings to help assess control risks in key business processes.
- Topics
- CPE Webcasts
- Events
Join Compliance Week and former U.S. Department of Justice Attorney Michael Johnson for a two-day virtual seminar (July 15-16) on how to apply scientifically validated methods to interview witnesses and assess credibility in workplace investigations.
Register
- Resource Library
- Special Reports
- Podcast
- Video
- Membership
Learn from mistakes of others and protect your company today
- Revised DOJ compliance guidance highlights risk, training, more
- No stopping CCPA enforcement deadline, says California AG
- U.S. takes aim at China with stock delisting bill
- Risk management tips during coronavirus crisis
Individual Corporate
No comments yet