The Impact of SEC Guidance Related to Cyber Risk for Organizations Using SaaS ERP Systems The latest U.S. Securities and Exchange Commission (SEC) guidance on Cyber Security risks have “Cyber” firms buzzing. Those that thought this would be the equivalent of Sarbanes Oxley must have been seriously disappointed. There was no mandatory audit of Cyber risk included. The guidance requires companies “to disclose material cybersecurity incidents they experience and to disclose on […] August 28, 2023
ERP Risk Advisors and HALEY Consulting & Advisory Forge Strategic Partnership ERP Risk Advisors and HALEY Consulting and Advisory Services Forge Strategic Partnership to Optimize Oracle ERP Risk Management and SOX Compliance… August 7, 2023
SafePaaS and ERP Risk Advisors Announce Partnership SafePaaS the leading policy-based access governance platform, announced its partnership with ERP Risk Advisors… July 31, 2023
Assessing AI (Artificial Intelligence) Risks & Controls Written By Fred Roth, CISA, Sr. Adjunct Lecture at ERP Risk Advisors What is AI? Artificial Intelligence (AI) is fast, complex, and limitless. The risks and rewards are in the news daily. As with any new technology, security and controls lag technological growth. Who will assess the security and controls of this innovative technology for your […] July 27, 2023
ERP ARMOR: Rules Press Release 4.3.23 ERP Risk Advisors is pleased to announce the addition of three new ERP systems to our ERP Armor library. We are now supporting Workday (HCM / Financials), Oracle Clinical One, and Oracle Transportation Management (OTM). June 6, 2023
Lack of Control Performer Independence Testing is a Systemic Issue and This is Why it Matters [Part 1] I recently wrote an article called Why Access Controls Must Be Tested for All In-Scope Systems and the feedback has been shocking. I have a decent network of auditors throughout external audit firms who regularly comment “off the record” when I am drafting or have published something. May 5, 2023
Cyber Risks Getting More Attention from Organizations Using SaaS Applications Organizations using SaaS Applications are encountering an increase in fraud risks that traditional cyber security firms are failing to recognize. Most organizations focus on protecting the perimeter and risks related to ransomware and data theft, leaving the organization vulnerable to attack in neglected areas. March 31, 2023
de Novo Partners with ERP Risk Advisors to Optimise Risk Management for Clients ERP Cloud Custom Role Offerings First, ERP Risk Advisors will be formally announcing our fixed price offering of custom roles for ERP Cloud at the Ascend conference in Las Vegas next month. If you are coming… March 30, 2023
Why Access Controls Must Be Tested for All In-Scope Systems Sarbanes-Oxley and control design best practices require access controls be tested for every in-scope ERP system within an organization’s Risk and Control Matrix (RACM). While this may not be the standard for … March 22, 2023