- SAP Community
- Products and Technology
- Additional Q&A
- Mitigation controls for self-conflicting transacti...
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Mitigation controls for self-conflicting transactions
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on 11-05-2014 5:23 AM
We have seen as per SAP Note 1600667 - Transactions that conflict with
themselves, that there are transactions in the SAP GRC Standard Rule Set
that conflict with themselves.
Please advise on what could possibly be used as suitable controls -
e.g. reports that can be run or other.
We require suitable mitigation controls or examples that can be adapted
or used for addressing these.
The note indicates that "Permissions are not different, mitigating
control required"
Per conflict reports we have the following of these transactions in our
roles:
FB02
FB08
FBRA
Accepted Solutions (0)
Answers (1)
Answers (1)
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Dear Don,
as most of the community members are technical consultants it might be difficult to get the answer you are looking for.
Let me give you some hints how to define the mitigation. Please also see the following documents which might give you an overview of how mitigating controls should be defined.
With FB02/FB08/FBRA (as far as I know) you have SOD required between accounts payable voucher entry and vendor master data maintenance. Hence a possible mitigation might be defined as follow:
- Masterdata changes of vendors (payment terms) are reviewed (e.g. with spot checks) by payment proposal approver, while checking the payment propsoal
- Check the change document of vendor master data (within SAP: S_ALR_87012089 change documents) at least once a month
- Configure a workflow that requires a second person to approve changes of sensitive fileds in vendor master data
Please be aware that this is only an idea I have and your scenario depends on your business requirement how to define the compensating controls.
Let me know if you need furthers inputs.
Best regards,
Alessandro
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- How do I make the file extension automatic for a specific bank in transaction F110? in Enterprise Resource Planning Q&A
- Architectural Insights into SAP NFT Management in Technology Blogs by SAP
- Currency Translation in SAP Datasphere in Technology Blogs by Members
- B2B Business Processes - Ultimate Cyber Data Security - with Blockchain and SAP BTP 🚀 in Technology Blogs by Members
- Identifying future dated transactions during a termination event in Employee Central in Human Capital Management Blogs by SAP
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.