Interested to Buy Any Domain ? << Click Here >> for more details...
whts the differents between SoX ,SoD??????wht kind of work
Sox do as wel .....SoD do?
whts is virsa??????? and VRAT,,,,VFAT,, how it workin
security.
- 3 Answers
- 14790 Views
- IBM, I also Faced
- E-Mail Answers
Answers were Sorted based on User's Feedback
Answer / aichik_am
SoX - refer to Sarbanes OXley act in the earlier 2000+-.
Where it impact all US companies either they operated in US
or outside (on other countries). Some people think this act
is significant, after fall down of big companies such as
Enron etc..
SoD - refer to Segregation of Duties. Basically one person
cannot have access to the whole process. The task need to be
segregated so that there is check and balance.
VIRSA - is one of third party tools used to check for SoX
compliance in a company. Other then this, there are also
other product such as APPROVA and SecurInfo. Nowadays VIRSA
have been brougt by SAP, and rebrand it as GRC (Governance,
Risk and Control).
| Is This Answer Correct ? | 8 Yes | 0 No |
Answer / ranjeet kumar
Segaration of duty, as a security principle, has as its
primary objective the prevention of fraud and errors. This
objective is achieved by disseminating the tasks and
associated privileges for a specific business process among
multiple users. This principle is demonstrated in the
traditional example of separation of duty found in the
requirement of two signatures on a cheque.With the concept
of SoD, business critical duties can be categorized into
four types of functions: authorization, custody, record
keeping, and reconciliation.
| Is This Answer Correct ? | 3 Yes | 0 No |
SOX is nothing but Sarbanes OXley act,is developed by the famous auditors Sarbens and Oxley.They developed this law to control the irregularities in the company.Long ago an American company named Enron cheated the customers and share holders and leads to the crisis in the Nation.Then SOX law came into the picture.
SOD refers to "Segregation Of Duties".SOD designed with the concept of separating any sensitive action among the people.Due to this no one can get the full command over the task, so it helps to minimize the irregularities in the company.
Virsa is a third party tool brought by SAP which is useful in finding the SODs.
/n/virsa/zVRAT is the transaction that helpful in finding the violations in virsa.
/n/virsa/VFAT is the transaction for the assigning or mapping the fire fighter id to the user.
| Is This Answer Correct ? | 2 Yes | 1 No |
under description ; in creating a role what should be written over there ....what does ur company follows ??
what is the different b/w su10 and su12
What are pfud t-codes used for?
How can you find all t-codes which are locked in the system ?
When validity of role is over its profile get deleted from master record but corresponding role remains as it is, Why ? Can we delete it automatically ?
what is authorization object and authorization object class?
How can you get the user list in sap?
How to control user only can schedule immediate background job but cannot schedule period background job?
Hi All, We have few users with SAP_ALL profile from 90 days, now i want check what are the transactions they are used till now and i didn’t activate any audit filters in SM19. In this case How can we find?
Give an example of SOD with object level control & also decide the Risk implication from the Technical standpoint.
How to create users?
what is centralized n decentralized
-
SAP Basis (1262) - SAP ABAP (3939)
- SAPScript (236)
- SAP SD (Sales & Distribution) (2717)
- SAP MM (Material Management) (912)
- SAP QM (Quality Management) (99)
- SAP PP (Production Planning) (523)
- SAP PM (Plant Maintenance) (252)
- SAP PS (Project Systems) (138)
- SAP FI-CO (Financial Accounting & Controlling) (2766)
- SAP HR (Human Resource Management) (1180)
- SAP CRM (Customer Relationship Management) (432)
- SAP SRM (Supplier Relationship Management) (132)
- SAP APO (Advanced Planner Optimizer) (92)
- SAP BW (Business Warehouse) (896)
- SAP Business Workflow (72)
- SAP Security (597)
- SAP Interfaces (74)
- SAP Netweaver (282)
- SAP ALE IDocs (163)
- SAP Business One (110)
- SAP BO BOBJ (Business Objects) (388)
- SAP CPS (Central Process Scheduling) (14)
- SAP GTS (Global Trade Services) (21)
- SAP Hybris (132)
- SAP HANA (700)
- SAP PI (Process Integration) (113)
- SAP PO (Process Orchestration) (25)
- SAP BI (Business Intelligence) (174)
- SAP BPC (Business Planning and Consolidation) (38)
- SAP BODS (Business Objects Data Services) (49)
- SAP BODI (Business Objects Data Integrator) (26)
- SAP Ariba (9)
- SAP Fiori (45)
- SAP EWM (Extended Warehouse Management) (58)
- Sap R/3 (150)
- SAP FSCM Financial Supply Chain Management (101)
- SAP WM (Warehouse Management) (31)
- SAP GRC (Governance Risk and Compliance) (64)
- SAP MDM (Master Data Management) (0)
- SAP MRS (Multi Resource Scheduling) (0)
- SAP ESS MSS (Employee Manager Self Service) (13)
- SAP CS (Customer Service) (0)
- SAP TRM (Treasury and Risk Management) (0)
- SAP Web Dynpro ABAP (198)
- SAP IBP (Integrated Business Planning) (0)
- SAP OO-ABAP (Object Oriented ABAP) (70)
- SAP S/4 HANA Finance (Simple Finance) (143)
- SAP FS-CD (Collections and Disbursements) (0)
- SAP PLM (Product Lifecycle Management) (0)
- SAP SuccessFactors (33)
- SAP Vistex (0)
- SAP ISR (IS Retail) (28)
- SAP IdM (Identity Management) (0)
- SAP IM (Investment Management) (0)
- SAP UI5 (59)
- SAP SCM (Supply Chain Management) (51)
- SAP XI (Exchange Infrastructure) (49)
- SAP Cloud Platform (34)
- SAP Testing (89)
- SAP SolMan (Solution Manager) (63)
- SAP MaxDB (116)
- SAP GUI (15)
- SAP AllOther (329)
