Golgappa.net | Golgappa.org | BagIndia.net | BodyIndia.Com | CabIndia.net | CarsBikes.net | CarsBikes.org | CashIndia.net | ConsumerIndia.net | CookingIndia.net | DataIndia.net | DealIndia.net | EmailIndia.net | FirstTablet.com | FirstTourist.com | ForsaleIndia.net | IndiaBody.Com | IndiaCab.net | IndiaCash.net | IndiaModel.net | KidForum.net | OfficeIndia.net | PaysIndia.com | RestaurantIndia.net | RestaurantsIndia.net | SaleForum.net | SellForum.net | SoldIndia.com | StarIndia.net | TomatoCab.com | TomatoCabs.com | TownIndia.com
Interested to Buy Any Domain ? << Click Here >> for more details...

  1. Categories >> Software >> ERP CRM >> SAP >> SAP Security
  2. Suggest New Category

Can anybody explain (short n simple) about SOX & SoDs with 3
examples for each functional module? n ur experience on SoDs.

Question Posted / sakthi

Answer Posted / sakthi

SOD stands for Segregation of duties.

It helps us to identify frauds and Misstatements.

For example in virsa tool we have critical SOD conflict S017
for SD module where it identifies and checks for user who
could Perform credit approval function and modify cash
received for fraudulent purposes.

SOD conflict F017 for FICO module where it checks for users
who could Maintain a non bona-fide bank account and divert
incoming payments to it.

SOD conflict P001 for PP module where it checks for users
who could Maintain a fictitious vendor and enter a Vendor
invoice for automatic payment

As far my experience concerned we need to avoid critical SOD
conflicts as much as possible and these SOD conflicts are
the ones which the auditor checks and they ask for the
mitigation control that we have outside like trace.

Is This Answer Correct ?    3 Yes 0 No



Post New Answer       View All Answers


Please Help Members By Posting Answers For Below Questions

How can I do a mass delete of the roles without deleting the new roles?

1460

Please let me know if there any vacancies for 3 years of Experienced level in SAP Security

1324

What are su56 t-codes used for?

1259

what are all the questions covered in "profiles related concepts " please let me know ?

2120

How to add custon t-code to a role and how to find the auth obj of custom t-code.if the custom t-code doesnt have auth obj, will you save and generate the role?

1189

Can you explain snc in sap security?

1172

Why is it important to delete sap-new profile? What steps will you take to do this?

1136

What appears as the last sentence in sap note 587410? What does it men and how would you restrict it?

1052

Explain secure store and forward?

1199

how we Completely designed and implemented methodology for controlling end user access to plants, cost centers, etc. and how we Applied to both R/3 and BW environments.

2140

what things you have to take care before executing run system trace?

1251

how we can see FFID if firefighter not able to see FFids ?

2059

how to do Reporting and Analysis authorizations

2471

What are se09 t-codes used for?

1312

What are the upgrades happened in GRC 5.3 from GRC 5.2?

4208