Presentation is loading. Please wait.

Presentation is loading. Please wait.

Design Secure & Compliant Roles for Oracle ERP & HCM Cloud

Published byHartanti Sudjarwadi Modified over 5 years ago

Similar presentations

Presentation on theme: "Design Secure & Compliant Roles for Oracle ERP & HCM Cloud"— Presentation transcript:

1 Design Secure & Compliant Roles for Oracle ERP & HCM Cloud
Lakshmi Rajamohan Product Management and Strategy, Risk Management Cloud Confidential – Oracle Internal/Restricted/Highly Restricted

2 Confidential – Oracle Internal/Restricted/Highly Restricted

3 Built-in Risk Management for ERP & HCM Cloud
Financials Procurement Risk Management Human Capital Management Project Portfolio Management Continuous security, transaction & configuration analysis • Audit & compliance workflows Common User Experience & Interface Common User Security, Data Model, Application Administration, Updates & Patches Common Extensibility Tools – Page Composer & Flex Fields Copyright © 2018, Oracle and/or its affiliates. All rights reserved. 3

4 Risk Management Solutions
Accelerate ERP & HCM deployments Continuous security & compliance monitoring Get started in hours Eliminate manual analysis tasks Activate library of 100+ packaged rules Certify users with sensitive access SOD, Security, Privacy and User Access Controls Fraud Detection – AP, expenses & payroll Controls Configuration Change Tracking – suppliers, bank# etc. SOX certifications & GDPR Compliance Management Secure Role Design Dashboards & Alerts Deep SOD Analysis Compliance Workflows User Access Certifications Certify Before Go-live Advanced Configuration Controls Advanced Access Controls Advanced Transaction Controls Copyright © 2018, Oracle and/or its affiliates. All rights reserved. 4

5 Access & SOD Challenges Getting to the Details
USER = Application User Access Points OTHER IMPORTANT ATTRIBUTES: Business Unit Data Access Set ERP/HCM Data Role What this gives you is a layered approach to controls….starting with analysis at the finest grain. Not at the role or user level, but at the privileges. This is virtually impossible for a provisioning engine to do. Submenu’s? Extensibility/Personalization: Page Composer? JOB ROLE DATA ROLE Abstract Role Data Dimensions DUTY ROLE Functional Privileges Data Dimensions

6 Confidential – Oracle Internal/Restricted/Highly Restricted

7 Confidential – Oracle Internal/Restricted/Highly Restricted

8 Confidential – Oracle Internal/Restricted/Highly Restricted

9 Confidential – Oracle Internal/Restricted/Highly Restricted

10 Confidential – Oracle Internal/Restricted/Highly Restricted

11 Confidential – Oracle Internal/Restricted/Highly Restricted

12 Confidential – Oracle Internal/Restricted/Highly Restricted

13 Confidential – Oracle Internal/Restricted/Highly Restricted

14 Confidential – Oracle Internal/Restricted/Highly Restricted

15 Confidential – Oracle Internal/Restricted/Highly Restricted

16 Confidential – Oracle Internal/Restricted/Highly Restricted

17 Confidential – Oracle Internal/Restricted/Highly Restricted

18 Confidential – Oracle Internal/Restricted/Highly Restricted

19 Confidential – Oracle Internal/Restricted/Highly Restricted

20 Confidential – Oracle Internal/Restricted/Highly Restricted

21 Confidential – Oracle Internal/Restricted/Highly Restricted

22 Confidential – Oracle Internal/Restricted/Highly Restricted

23 Confidential – Oracle Internal/Restricted/Highly Restricted

24 Pre-built Controls Financials Enter Journals and… Enter Budget and…
Set Up General Ledger Sets Set Up General Ledger Statistical Units of Measure Assets Depreciation Assets Workbench Capitalizing Assets Manage Accounting Period Statuses Post Journal Entry Setup Assets Define Accounting Calendars Set Up General Ledger Chart of Accounts Manage Journal Approval Rules Set Up General Ledger Currencies Set Up General Ledgers Set Up General Ledger Daily Rates Manage General Ledger Balances Cube Manage Accounting Data Security Manage General Ledger Enterprise Structures Post Journal Entry and… Set Up General Ledger Chart of Accounts Manage Accounting Period Statuses Set Up General Ledger Currencies Define Accounting Calendars Set Up General Ledger Daily Rates Manage Journal Approval Rules Manage Accounting Data Security Set Up General Ledgers Set Up General Ledger Sets Manage General Ledger Balances Cube Set Up General Ledger Options Manage General Ledger Enterprise Structures Set Up General Ledger Statistical Units of Measure Assets Depreciation Enter Budget and… Assets Workbench Create Purchase Orders Capitalizing Assets Create Payables Invoices Set Up Assets Post Journal Entry Approve Payables Invoices

25 Pre-built Controls Procurement Security Enter Journals and…
Create Payables Invoices Maintain Supplier Bank Accounts Create Payments Receive Goods and Services Create Purchase Orders Approve Payables Invoices Merge Suppliers Bank Account Reconciliation Post Journal Entry and… Create Payments and… Set up Payment Create Payables Invoices and… Create Suppliers and… Create Purchase Orders and… Receive Goods and Services Approval Authorization Control Create Payments Create Purchase Agreements Maintain Supplier Bank Accounts Approve Payables Invoices Return Goods and Services Create Payables Invoices Receipt Accounting Create Purchase Orders Manage Payables System Option Merge Suppliers Security Create Role and… Provision Role

26 Pre-built Controls Supply Chain Enter Journals and…
Enter Accounts Receivables Invoice Enter Customer Receipts Physical Inventory Release Sales Order Remittances Receive Goods and Services and… Post Journal Entry and… Cycle Counting Inventory Transactions Return Goods and Services and… Create Payables Invoices Create Customer and… Receive Goods and Services Item Costing and… Enter Customer Receipts and… Create Items Pick Release Goods Release Sales Order Bank Account Reconciliation Ship Confirm Goods Release Sales Order and… Create Items and… Cycle Counting Maintain Automatic Receipts Inventory Transactions Item Costing or Manage Cost Accounting Activities Delete Receipts Enter Accounts Receivables Invoice Enter Customer Receipts Create Purchase Orders and… Remittances Item Costing or Manage Receipt Accounting Activities Reversing Receipts

27 Advanced HCM Controls: Planned Pre-built Library of Best Practice Access Controls
Manage Employee Position and… Sensitive Human Resource Privileges Manage Payroll Sensitive Payroll Privileges Manage Payroll Batch Processes Manage Payroll Costing Sensitive Time and Labor Privileges Manage Compensation Manage Time and Labor Manage Time and Labor and… Manage Employee and… Manage Payroll Manage Payroll Batch Processes Create User and… Manage Payroll Costing Manage Time and Labor Manage Compensation Manage Worker and… Manage Compensation and… Manage Person and… Confidential – Oracle Internal/Restricted/Highly Restricted

28 Risk Management Sessions @OOW18
Mon 3:45pm Protect Employee Private Data and Comply with GDPR Within Oracle HCM Cloud [BUS3922] Moscone South, Room 158 Mon 4:45pm Use Data Science to Fight Fraud, Strengthen Security with ERP Advanced Controls [BUS4254] Moscone South, Room 156 Mon 5:45pm Streamline SOX Compliance and Segregation of Duties Using Oracle ERP Cloud [CAS5818] Moscone South, Room 153/155 Tue 1:45pm Implement Segregation of Duties Automation Within Weeks Using Oracle ERP Cloud [CAS5825] Moscone South, Room 156 Tue 4:45pm Audit 100 Percent of Expense/AP payments using Advanced Data analysis in ERP Cloud [CAS5821] Moscone South, Room 154 Tue 5:45pm Strengthen Security Using Advanced ERP and HCM Controls [CAS5823] Moscone South, Room 156 Wed 11.30am Design Secure & Compliant Roles for Oracle ERP Cloud & Oracle HCM Cloud [TH6916] The South, Theatre 2 Wed 4:45pm Implement SOX Certifications Within Weeks Using Oracle ERP Cloud [CAS5827] Moscone South, Room 156 Thu 9:00am Best Practices to Promote Employee Safety and OSHA Compliance Using Oracle HCM Cloud [PRO3920] Moscone South, Room 157 Thu 10:00am Protect Personal Data and Comply with GDPR Using ERP Advanced Controls [BUS4255] Moscone South, Room 156 Thu 11:00am GRC Special Interest Group [SIG3864] Moscone South, Room 156 CPE CPE CPE CPE CPE CPE CPE CPE CPE

29 Oracle Risk Management Customers
….and more!

30 Oracle Risk Management User Forums
conference presentations, product updates, training materials, Q&A etc. cloudcustomerconnect.oracle.com

31 Risk Product Demo @OOW18 Request 1 on 1 meeting with product team
Contact Visit Demo Booth #ERP-A03 (Moscone South Lower Level) Monday 9:45 to 5:45 Tuesday 10:30 to 5:45 Wednesday 10:30 to 4:45

32 Oracle Risk Management – Learn More
Get started, documentation, release notes, training. Guided Tours Path to Success Training Personal Guidance User Documentation Release Readiness Forum

33 Confidential – Oracle Internal/Restricted/Highly Restricted

Download ppt "Design Secure & Compliant Roles for Oracle ERP & HCM Cloud"

Similar presentations

WMS – Warehouse Management Systems

WMS – Warehouse Management Systems
Improving SOX Remediation Through Automated Testing of Internal Controls November 4, 2005.

Improving SOX Remediation Through Automated Testing of Internal Controls November 4, 2005.
Intellitec Solutions User Group Microsoft Dynamics GP 2013.

Intellitec Solutions User Group Microsoft Dynamics GP 2013.
4 Copyright © 2007, Oracle. All rights reserved. Shared Entities and Integration.

4 Copyright © 2007, Oracle. All rights reserved. Shared Entities and Integration.
Chapter 8: Accounting Information Systems and Business Processes - Part II

Chapter 8: Accounting Information Systems and Business Processes - Part II
© 2004 ERPS Sarbanes-Oxley Best Practices in an Oracle Applications Environment Jeffrey T. Hare, CPA ERP Seminars.

© 2004 ERPS Sarbanes-Oxley Best Practices in an Oracle Applications Environment Jeffrey T. Hare, CPA ERP Seminars.
The most comprehensive Oracle applications & technology content under one roof Procure to Pay Automation Bevan Wright Fusion5 NZ Oracle User Group.

The most comprehensive Oracle applications & technology content under one roof Procure to Pay Automation Bevan Wright Fusion5 NZ Oracle User Group.
The TRUTH About SOX, Auditors & Oracle Applimation is the leading provider of Application Lifecycle Management solutions.

The TRUTH About SOX, Auditors & Oracle Applimation is the leading provider of Application Lifecycle Management solutions.
Deploying Fusion HCM and ERP within Oracle

Deploying Fusion HCM and ERP within Oracle
01 Copyright © 2010, Oracle and/or its affiliates. All rights reserved. Procure to Pay Lifecycle Overview.

01 Copyright © 2010, Oracle and/or its affiliates. All rights reserved. Procure to Pay Lifecycle Overview.
Slide 1 Session 15 – ERP Security 1.Objectives 2.Oracle ERP Overview 3.Oracle ERP Security 4.Oracle Workflow and Security 5.How to Secure Oracle Applications.

Slide 1 Session 15 – ERP Security 1.Objectives 2.Oracle ERP Overview 3.Oracle ERP Security 4.Oracle Workflow and Security 5.How to Secure Oracle Applications.
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Application Architecture Sample Presenter’s Name Presenter’s Title Organization,

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Application Architecture Sample Presenter’s Name Presenter’s Title Organization,
Presentation Title Mohan Dutt Hyperion Solutions Corporation

Presentation Title Mohan Dutt Hyperion Solutions Corporation
Simplify your work Enterprise Services Center Oracle E-Business Asset Lifecycle Management: Maximize Your Return on Assets.

Simplify your work Enterprise Services Center Oracle E-Business Asset Lifecycle Management: Maximize Your Return on Assets.
Oracle EBS R12 features Analysis. Agenda Overall R12 features at high level R12 financials features at high level AP – Suppliers AP – Invoices AP – Banks.

Oracle EBS R12 features Analysis. Agenda Overall R12 features at high level R12 financials features at high level AP – Suppliers AP – Invoices AP – Banks.
Shared Entities and Integration

Shared Entities and Integration
McGraw-Hill/Irwin Copyright © 2011 The McGraw-Hill Companies, All Rights Reserved Chapter 14 Enterprise Resource Planning Systems.

McGraw-Hill/Irwin Copyright © 2011 The McGraw-Hill Companies, All Rights Reserved Chapter 14 Enterprise Resource Planning Systems.
Collaborative SIG Presentation: Projects to Profit Fundamentals

Collaborative SIG Presentation: Projects to Profit Fundamentals
Identifying Segregation of Duties Issues in a PeopleSoft Environment

Identifying Segregation of Duties Issues in a PeopleSoft Environment
FI$Cal Change Discussion Guide Projects/Contracts Guide March 2015.

FI$Cal Change Discussion Guide Projects/Contracts Guide March 2015.

Similar presentations

Ads by Google