How confident are you that your risk advisory firm or your system integrator correctly implemented least privilege access and segregation of duties conflict-free job roles in your Oracle ERP/HCM Cloud system? 

Here’s the harsh reality … rarely do we see other firms in this space get it right.   

More than 95% of the roles we review contain issues that require remediation. They likely grant excessive privileges and include segregation of duties conflicts. Furthermore, most organizations are subject to Oracle introducing unwanted abilities into your seeded roles during the quarterly patch process. 

By the way…  auditors’ hyper-focus on segregation of duties causes them to ignore sensitive access risks which are just as much, if not more, critical to the security of your organization’s data and assets.  This is something you’ll want to watch out for, and we’ve broken down some tips in our article here. 

Back to the main program…

5 Reasons why you should have fully customized Oracle ERP/HCM Cloud roles

We advocate for our customers to consider fully customizing their roles as part of their implementation. Here’s why: 

1. Prevent Overprovisioned Users – Seeded roles are often overprovisioned which provides users with accesses that are not appropriate for their job function.  These overprovisioned roles lead to risks with compliance, cyber security, fraud, data security, and operations.
2. Avoid costly licensing issues – Seeded roles nearly always cause licensing issues; for license buckets you currently utilize and unexpected usage for licenses you don’t own. (Which could cost your hundreds of thousands of dollars) 
3. Stay protected from Oracle Patches – Fully customized roles inoculate your organization from patches, eliminating the possibility of undetected updates from Oracle during your quarterly patch process. Therefore, management no longer has to worry about this obstacle during the tight two-week window between Oracle applying the patch to your DEV instance and deploying it to your Prod instance.
4. Eliminate the need for significant re-testing – Testing our fully customized roles during your project eliminates the need for a significant re-testing cycle after ‘go live’ which saves significant time and money in the long run.
5. Cleaner Audits – Properly built fully customized roles will make for a cleaner audit as critical segregation of duties will have been addressed and sensitive access risks will have been eliminated. 

So, the bad news is you likely have overprovisioned job roles assigned to users in your organization.  The good news is we are offering you insight into these issues at no cost to your organization.  In 2025, we’ve made it our goal to give away $600,000 in free services to help you better understand these issues. 

ERP Risk Advisors is the premier firm when it comes to implementing fully customized roles for ERP / HCM Cloud.  

What’s the Deal?

Each month in 2025, we will provide two organizations a free role design assessment that identifies Segregation of Duties conflicts and Sensitive Access risks.   Our regular price for these assessments is $25,000. Similar assessments from the other firms cost well over $50,000. We strive to offer a better product at a better price. 

Twenty-four organizations will each receive a $25,000 free assessment totaling $600,000 in free services from ERP Risk Advisors this year!
 

Is there a catch?

Yes… we will not expose our intellectual property to our competition. Therefore, we’ll have to discuss the limitations we have on when and who will be able to see the assessment.

How can we get in the queue for the assessment?

Apply today for your free assessment here and we will be in touch.