- SAP Community
- Products and Technology
- Additional Q&A
- Questions about mitigating controls
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Questions about mitigating controls
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on 12-04-2008 3:13 AM
I am helping a client provide a rock-solid response to an audit concern with regards to mitigating controls. At present, the client is using an older version of Virsa CC (I think 5. something?) and have a few questions.
1 .Can you maintain a global mitigating control by risk ID, or is it only by user, role, profile, and HR object?
2. How can HR object be used? I saw "Job" in this --I assume this would be like "Accountant I", "Accountant II" , etc.? What other options are there?
3. When would you ever use profile? I used to think of times when profiles were assigned to roles, like SAP_ALL (which was of course over used before SoX).
Thanks for your help
Brian
Accepted Solutions (0)
Answers (1)
Answers (1)
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Hello Brian,
1 .Can you maintain a global mitigating control by risk ID, or is it only by user, role, profile, and HR object?
Yes, you can maintain
2. 2. How can HR object be used? I saw "Job" in this --I assume this would be like "Accountant I", "Accountant II" , etc.? What other options are there?
Not completely sure on this but Jobs can be used I guess, which is in most cases.
3. When would you ever use profile? I used to think of times when profiles were assigned to roles, like SAP_ALL (which was of course over used before SoX).
Ideally you should not use profiles. Also, if used they can be assigned directly to Users from SU01
Regards,
Hersh.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Unify your process and task mining insights: How SAP UEM by Knoa integrates with SAP Signavio in Technology Blogs by SAP
- Empowering Retail Business with a Seamless Data Migration to SAP S/4HANA in Technology Blogs by Members
- Automatic Hire in Human Capital Management Blogs by SAP
- What You Need to Know: Security and Compliance when Moving to a Cloud ERP Solution in Enterprise Resource Planning Blogs by SAP
- Shift to Remote, Continuous, and Risk-Adjusted Management with SAP Three Lines of Defense Package in Financial Management Blogs by SAP
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.