Automating PeopleSoft Segregation Of Duties: Financials/HCM . - PRWeb
1y ago
19 Views
1 Downloads
1.42 MB
30 Pages
Report/dmca
Download PDF

Transcription

Automating PeopleSoftSegregation of Duties:Financials/HCM/Campus SolutionsLewis Hopkins, Sr. Applications ConsultantNovember 13, 2014

Reminders A recording of today’s session willbe sent to all registrants shortlyafter the webinar. Phone lines/mics are MUTED. There will be a Q & A section at theend of today’s session. Please usethe GoToWebinar “Questions”feature (not the “Chat” feature) fromyour control panel to post aquestion at any time during thepresentation.

Agenda IntroductionsAbout Smart ERP Solutions, Inc.Security and Fraud ChallengesAuditorsSmart Segregation of Duties Demo Q & A / Wrap Up

IS THIS YOUR SoD BEST PRACTICE?

About Smart ERPSolutions, Inc.

About Smart ERP Solutions, Inc.Human CapitalManagementFinancials andSupply ChainCampusSolutionsInnovative Solutions & Services for PeopleSoftCommon – Critical – ComplementaryExtendFunctionalityImprove ROIGet FasterResultsLeverage ExistingInvestment Pre-built, packaged,proven solutions Highly configurable –tailor to YOUR needs Customer drivenrequirements Affordable Integrated withexisting PS apps Architected as addon solutions Avoid customizations Low-cost Minimal risk Release independent– no upgraderequired On Premise solution Rapidimplementation Deep PeopleSoftknowledge &experience Unique bestpractices forimplementations &upgrades PeopleSoft datamodel and existingdata Current PeopleSoftbusiness rules andprocessing End-user PeopleSoftskills Infrastructure andtechnology

Challenges with Securityand Segregation of Duties

Security and Fraud US Fraud averages 150,000, 22%exceed 1m The average time to finding Fraudulentactivity is 18 raudweek/content/documents/cost-of-complacency.pdf

The impact of time 75k loss at 7 months 150k at 19 months 965k at 61 months Loss over Time12000001000000800000Loss in 6000004000002000000719Time: 7 to 61 months61

ProActive Vs Reactive MeasuresSurveillance / Monitoring, ITControls: 59kTip or Confession: 184k“PROACTIVE MEASURES catch fraudsooner and minimize losses. Frauds thatare caught by reactive measures lastlonger and cause more harm.”Notification by Law Enforcement: 1.25m

Auditor’s Perspectives Greater focus on Mobile workers, 28% ofbreaches were caused by remote workforce Less reliability on documentation that can beedited without trace – i.e SpreadSheets More Continuous Controls monitoring – auditsonce a year are not enough Greater focus on Internal Audit reporting toSenior Management – identify key Data andRisks associated

Case StudiesFinancials: Falsified checks written to an AP Clerk’spersonal accounts for 4 years totaling 1m, paymentscovered up. No SoD in place.Campus Solutions: ‘Fake’ Courses offered to 3,100students with little academic work involved. Assistant wasable to create the ‘fake’ courses.HCM: 84,000 embezzled by HR Employee falsifying Payrollinformation between late 2012 and early 2014

Security Pain Points in PeopleSoft SQL the data out and cross reference the information beforepresenting it in a User friendly way – time and resources?How do you make sure you have covered everything and that thedata is accurate?Results stored in Spreadsheets are prone to be manipulated and inturn may need auditingHow to deal with false positives? What if Users are Read Only anddo not have update authoritiesOnce issues have been identified, how can a more proactiveapproach be taken to avoid them again in the future?How to manage exceptions and change?

Example Query from PeopleSoftReport on Permissions ListThese descriptions canbe meaningless to Non-Technical Users!

Smart SoD Overview

Delivery - EmbeddedDeploy into any version of PeopleSoft,same look and feel – easy learning curveSmart SoD

Delivery – Fully ManagedDeploy as a ServiceSmart SoD

Smart Segregation of Duties Create and Manage Rules in a StructuredFormat, taking into account Authorities Powerful Engine reads through Security andAccess to determine who is in Violation of theRules Pro-Actively validate changes to User’s Accessand then commit once satisfied Dashboards and Analytics for rapid Root CauseAnalysis

Segregation of Duties Rule StructureRule Name – Time Entry VS Run PayrollSeverity LevelJustification – Why does this rule exist?Function – Business AreaAbility – Duties to beSegregated

Creation of PeopleSoft SoD RulesRole Level (high level)Permissions ListsComponent/PageModule-SpecificSecurity

Mitigations & Workflow Approval Enter Notes and Expiry Dates for Users thatneed to break the Rules Run through Workflow Approval Workflow Approval can be assigned to virtuallyany PeopleSoft process Multiple Routing and Proxy enabled Prevent someone from Creating and Managinga University Course alone!

Demonstration Agenda Review the Analytics/Reports Understanding the structure of the Rules & theEngine Working with Users that need to ‘Break theRules’ Pro-Active SoD Questions

Creation of PeopleSoft SoD Rules Role levelDemo:Smart SoD – Create matrix of all active system roles– Identify all roles that should not be linked to the same user Such as HR representative and Payroll Admin Permission List / Business Process level– Add to / modify as needed Component / Program level– Add in any custom or modified processing– If creating your own rules Start with most important controls & gradually add to them

Value StatementSecurity and Segregation of Duties is an important element of youroverall PeopleSoft security and risk managementKey Features of an automated solution can help you maintainlegislative compliance (SoX), meet audit requirements andreduce the likelihood and impacts of fraud and errors Expressly designed for your current PeopleSoft Powerful Proactive, Reactive and Mitigation Features Automated Workflow Approvals Reporting/Dashboards facilitate audits and compliance Use pre-packaged built-in security and SoD rules or easilycreate your own Add-on Architecture Lowers Total Cost of Ownership– Seamless Integration– Utilize Best Practices– Maintenance and Upgrades

Q&Asales@smarterp.com

Proactive SoD: User Profiles

PeopleSoft SoD Dashboards

PeopleSoft SoD Dashboards

PeopleSoft SoD Dashboards

Thank YouFor more information visit:Copyright 2014 Smart ERP Solutions, Inc.smarterp.com

Automating PeopleSoft Segregation of Duties: Financials/HCM/Campus Solutions Lewis Hopkins, Sr. Applications Consultant . your control panel to post a question at any time during the presentation. Agenda . Deploy into any version of PeopleSoft, same look and feel - easy learning curve. Smart SoD. Delivery - Fully Managed .

Related Books

PeopleSoft Upda t e Manager - PeopleSoft Tutorial

PeopleSoft Upda t e Manager - PeopleSoft Tutorial

PeopleSoft HCM 9.2: PeopleSoft Human Resources Manage Positions - Oracle

PeopleSoft HCM 9.2: PeopleSoft Human Resources Manage Positions - Oracle

OR ACL E D AT A SH E ET PeopleSoft Compensation

OR ACL E D AT A SH E ET PeopleSoft Compensation

PeopleSoft 8.3 FSA Administration PeopleBook - Oracle

PeopleSoft 8.3 FSA Administration PeopleBook - Oracle

Understanding PeopleSoft Deployment Packages for Update Images

Understanding PeopleSoft Deployment Packages for Update Images

PeopleSoft Intermediate Reporting - Vanderbilt University

PeopleSoft Intermediate Reporting - Vanderbilt University

Eric de Vos, trainer/techno-functional consultant/architect/teamleider .

Eric de Vos, trainer/techno-functional consultant/architect/teamleider .

PeopleSoft FSCM 9.2: Financial Gateway - docs.oracle

PeopleSoft FSCM 9.2: Financial Gateway - docs.oracle

PeopleSoft 8.00.01 Mobile Order Management PeopleBook - Oracle

PeopleSoft 8.00.01 Mobile Order Management PeopleBook - Oracle

PeopleSoft 9.2: Application Integration Framework - Oracle

PeopleSoft 9.2: Application Integration Framework - Oracle

PeopleSoft HCM 9.2: Human Resources Manage Positions

PeopleSoft HCM 9.2: Human Resources Manage Positions

PopularTags

Recent Views