ERP Cloud: Delegation of Roles – and Bypassing the User Provisioning Process

ERP Cloud: Delegation of Roles – and Bypassing the User Provisioning Process

Oracle allows some roles to assigned to a User to be delegated to another user without having to go through the approval process.  This would allow an assignment of a role that all organizations would require approval for as part of their ITGCs.  In this video, we will demonstrate how this is done, how to test for its existence, and how to prevent it from happening in your environment.

This is an important topic to keep you out of hot water with your auditors.  If one or more Roles in your system are configured to allow delegation it could easily lead to a control deficiency.  Given these delegations do not show in the audit logs, it could easily lead to a Significant Deficiency related to your User Provisioning process.

Join the discussion on LinkedIn here:

https://www.linkedin.com/feed/update/urn:li:activity:6664193118918717441

Jeff Hare
jhare@erpra.net

Jeff Hare, CPA CIA CISA is the founder and CEO of ERP Risk Advisors. His extensive background includes public accounting (including Big 4 experience), industry, and Oracle Applications consulting experience. Jeff has been working in the Oracle Applications space since 1998 with implementation, upgrade, and support experience. Jeff is a Certified Public Accountant (CPA), a Certified Information Systems Auditor (CISA), and a Certified Internal Auditor (CIA). Please follow us on LinkedIn and Youtube.

No Comments

Post A Comment