This report begins with a review of segregation of duties and sensitive access controls, and reasons why both subjects are often misunderstood by the audit and compliance community. It then offers an 11-step method for assessing business processes to find gaps where SoD and SA controls are necessary, establishing those controls, testing them for effectiveness, and documenting the process for outside review. The book includes (as appendices) several Excel spreadsheets giving examples of SoD and SA rules, and of capability listings to help assess control risks in key business processes.
- Webcasts & Training
This timely event will cover the regulatory shift in the U.S. on ESG-centered disclosure; calls for a global, standardized reporting framework; preventing greenwashing in one’s marketing and public relations efforts; third-party risk management; and technology solutions in ESG reporting, monitoring, and benchmarking contexts.
- Resource Library
- Special Reports
Learn from the latest headlines and protect your company today
- Amazon discloses record-shattering $887M GDPR fine
- Compliance ramifications of proposed $26B opioid deal for pharma industry
- Report: Deficient risk culture at Credit Suisse contributed to Archegos collapse
- Ex-KPMG partners barred by SEC over cheating scandal roles
- More navigation items