Xpandion Blog

  • Home
    Blog Home This is where you can find all the blog posts throughout the site.
  • Tags
    Tags Displays a list of tags that have been used in the blog.
Subscribe to this list via RSS Blog posts tagged in SoD

Many small and medium sized companies struggle with this challenge. Let’s say they have a sales representative who’s located in another country. Which authorizations should he get? Should he have access to the SAP system at all? If so, should he be allowed to only see SAP reports (“view only”) or should he issue sales documents too? The answer is not easy, and might involve solving or remediating Segregation of Duties violations during the analysis process.

 iStock_000020168207XSmall.jpeg

Continue reading
Hits: 6959 0 Comments

When it comes to handling GRC conflicts, is it better to use an alerting tool or a simulation tool? They both manage conflicts, but one is predictive and the other happens after the fact. Well, there is no one solution; the key is to use them in combination to promise a peaceful process and clean GRC audit report.

iStock_000006872507XSmall.jpg

Continue reading
Hits: 6648 0 Comments

Here are 5 amazing facts based on our vast experience with SAP customers required to maintain SOX compliance, GRC consultants and auditing firms. 

b2ap3_thumbnail_iStock_000012290242XSmall.jpg

Continue reading
Hits: 10098 2 Comments

Does the following dialog ring a bell?

Auditor:                   How in the world was activity FS02 (Change G/L Account) not marked as high risk?!
Risk Manager: Well… it was marked… but then John told me to remove it…
Auditor: Can you show me the email from John?
Risk Manager: Well… it should be here somewhere… let me try and find it…

iStock 000016727717XSmall

Continue reading
Hits: 6112 0 Comments

In order to manage a Segregation of Duties project successfully, it is essential that you eliminate business risk across your organization. To accomplish this you need to implement a comprehensive rule-set.

iStock 000005994546XSmall

Continue reading
Hits: 10246 0 Comments

When it comes to requesting and granting authorizations, I found that in many companies the process is performed manually – via email – as follows:

  1. User sends email to IT requesting additional authorization to perform activity.
  2. IT transfers request to relevant manager, who approves required authorization (at times without even inspecting the real intention of the request).
  3. IT allocates the required authorization to user.

Responsible 000006149074XSmall

Continue reading
Hits: 6400 0 Comments

Companies of all kinds and sizes are focusing more and more on finding the most adequate GRC (Governance, Risk, and Compliance) and SoD (Segregations of Duties) solutions.

SoD 000019289272XSmall

Continue reading
Hits: 7006 0 Comments

The more Security and SAP Licensing Managers that Xpandion works with, the more confirmation we receive that there is a distinct difference in the actions taken by successful managers vs.  unsuccessful managers.  Using ProfileTailor Dynamics/ LicenseAuditor these successful managers implement specific action items which are the only ones possible to increase ROI and decrease TCO in the world of SAP.

Continue reading
Hits: 5656 0 Comments


Headquarters

+972-3-624-4245

157 Yigal Alon Street,

Tel Aviv 67443, Israel

info@xpandion.com

US Office

+1-800-707-5144

33 West 19th Street, New York,

NY 10011, USA

info.us@xpandion.com

India Office

+91-989-2546216

C 103, Akruti Orchid Park, Andheri-Kurla Road,

Andheri East, Mumbai, India

info@xpandion.com