Security, Compliance, and segregation of duties

Compliance Solutions for users of Oracle ERP, JD Edwards & Peoplesoft

Shut the stable door BEFORE the horse bolts

Despite government and industry legislation, increasing demands on IT budgets and resources mean that security and compliance projects are often delayed or overlooked – until either fraud is committed or an audit is failed. But that won't happen to us, right?

Fraud is on the increase

In their Global Economic Crime Survey 2011, completed by 3,877 respondents from 78 countries, PWC found that:

  • 34% of respondents suffered economic crime in the last 12 months (up from 30% in 2009)
  • Almost 1 in 10 who reported fraud suffered losses of more than US$5 million
  • 56% of respondents said the most serious fraud was an 'inside job'.

Companies can't afford to be complacent. The potential losses in terms of both money and loss of reputation are too great to ignore the need for sensible risk management.

Robust security and an effective Segregation of Duties (SoD) policy are critical weapons in the battle to prevent unauthorized access to your ERP system, but implementing and managing them with native JD Edwards is both complex and workload intensive.

Because there are so many ways for users to access programs, the task of finding and securing them all is extremely time-consuming and repetitive – and making even minor changes at a later date can create an inordinate amount of work. There is no easy way to implement SoD in native JD Edwards. Many organizations use sophisticated spreadsheets to try and manage their SoD procedures, but the complexity of reporting means that potential SoD violations often go undetected. Keeping spreadsheets in step with changes in the live system can be a nightmare, and, even if you manage it, spreadsheets cannot actually enforce SoD rules within your live system.

To find out how you can improve your controls to reduce risk AND cut your security management and compliance costs and workload by up to 80%, please visit