on 12-19-2013 6:39 PM
Hi all,
I was requested to design mitigating controls for all the risks existing in their GRC ruleset.
When I started to think about SOD risks that contains IT functions, I figured out that all the preventive/manual controls would be ineffective, an the automatic ones would be cheated.
Have you ever performed this analysis and designed controls that could really mitigating these basis risks?
All the basis risks came from SAP standard ruleset.
Thanks in advance.
Regards,
Felipe Barros
Hi Felipe,
Can you please elaborate more on your requirement?
"I was requested to design mitigating controls for all the risks existing in their GRC ruleset."
Is your requirement to create mitigation controls for all the risks?? or specific to basis?
Regards,
Madhu.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.