Segregation of Duties Management
Segregation of Duties reporting without the pain
Managing effective Segregation of Duties (SoD) is an important means of protecting your business from the risk of internal fraud and mandated by compliance regulations such as Sarbanes-Oxley.
But many organizations struggle to manage SoD processes with complicated spreadsheets and time-consuming manual checks.
World SoD automates the process and enables you to identify violations quickly. It allows you to maintain detailed rules that reflect your company’s SoD policy, then analyze your access model against them, reporting any violations found for further investigation.
If used in conjunction with World Config, World SoD can prevent violations being built into the system – ie rules can prevent a user from being assigned two different roles that would cause an SoD conflict.
- Reliable SoD controls for much less effort
- Quickly answer auditors' questions and produce the evidence they need
- Quickly detects SoD violations that exist within your system
- Prevents new violations when roles are assigned (when used with World Config)
A starter set of SoD rules is supplied, which can be quickly adapted to suit your organization’s specific policies.
The SoD framework allows you to define SoD rules that are as simple or complex as you need them to be. Functions can be declared as collections of programs or specific screens and function keys. With AND/OR logic you can specify and report against an almost infinite combination of SoD rule definitions.
When used in conjunction with World Config, World SoD takes into account the permissions activated by Multiple Roles assignments when checking for security violations.
Violations can be viewed/reported by user, program or role.