Oracle E-Business Suite: SQL injection risk One of the key controls that organizations often define as part of their ITGCs relates to the identification and monitoring of privileged users. An accurate definition of what is deemed to be a ‘privileged user ‘ is … January 30, 2019
The One FUNCTION That Could Undermine Your Journal Entry Controls In R12, Oracle dramatically changed their subledger architecture by introducing SLA – Sub-Ledger Accounting Architecture. This change helps to standardize the way accounting is stored and transferred to … November 9, 2018
The One PROFILE OPTION That Could Undermine Your Journal Entry Controls Most organizations use ADI (client server version in 11i and prior and web version in R12 and later) to develop and upload Journal Entries (JEs). The JEs are subject to ‘manual’ journal entry controls … October 29, 2018
The One CONFIGURATION That Could Undermine Your Journal Entry Controls Background: In Oracle there are various seeded (i.e. provided upon installation of the applications) Sources of Journal Entries (JEs). Organizations implementing the application can also define more … October 22, 2018
Why Personal Profile Values Form Needs to be Removed Time to revisit this topic. This is easy pickins for external auditors to lead to a control deficiency. Take a look back at this topic I posted on last year: Example 1: The ability to apply or remove Personalizations can be overwritten by the User. October 12, 2018
New Audit Support as a Service for Oracle EBS ERP Risk Advisors announces new Audit Support as a Service offerings for Oracle’s E-Business Suite and ERP Cloud applications. ERP Risk Advisors is pleased to announce two new Software as a Service (SaaS) offerings for Oracle’s ERP applications – E-Business Suite and ERP Cloud. July 3, 2018