ERP Cloud: Setting up a Read Only User One challenge of User Administration is providing a User with the ability to inquire on data in some forms and provide them update abilities in other forms. There are no seeded roles that provide … April 28, 2020
One of the Most Significant Fraud Risks for Organizations Using ERP Cloud All organizations running ERP Cloud should be concerned about fraud. The Association of Certified Fraud Examiners’ 2018 Report to the Nation identifies that 89% of fraud is misappropriation of assets … April 21, 2020
ERP Armor™: Roles Press Release Greeley, Colorado, April 9, 2020 – The heart of ERP Armor is the identification and management of risk in a customer’s ERP Solution. ERP Armor blends a proven ERP Risk Architecture with … April 9, 2020
Another Elephant in the Room: “Institutional Bias” in the External Audit Community Last week I wrote a blog talking about how the System Implementation industry is biased against a “Complete and Secure” implementation. This week I’d like to address another elephant in the … April 7, 2020
The SI industry is stacked against a ‘complete and secure’ ERP implementation The SI industry is stacked against a ‘complete and secure’ #ERPCloud implementation? SIs don’t win bids by providing a scope that includes controls and role design. Very little, if any, customization of … April 2, 2020
ERP Armor™ as a Service Press Release Greeley, Colorado, April 2, 2020 – ERP Risk Advisors, a practical thought leader for managing ERP Risk, providing content and consulting services related to compliance, security, risk management, and … April 1, 2020
ERP Cloud Role Design in 2020 We have recently been sharing our thoughts on LinkedIn on the challenges with Oracle ERP Cloud role design. The majority of implementations go live with purely seeded roles. There is an assumption … March 27, 2020
ERP Armor™ Press Release Greeley, Colorado, April 5, 2019 – ERP Risk Advisors, a practical thought leader for managing ERP Risk, providing content and consulting services related to compliance, security, risk management, and … April 4, 2019
Oracle E-Business Suite: SQL injection risk One of the key controls that organizations often define as part of their ITGCs relates to the identification and monitoring of privileged users. An accurate definition of what is deemed to be a ‘privileged user ‘ is … January 30, 2019