SlideShare uma empresa Scribd logo

Advanced Controls access and user security for superusers con8824

Oracle
Oracle

External Auditor relies 100% on Oracle Advanced Controls for assessing Segration of Duties at a customer

TecnologiaNegócios
1 de 61
Baixar para ler offline
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal1
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal2 @OracleAdvCntrls Post Questions Before, During and After
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal3 The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.
Advanced Access and User Security for Oracle Applications Mark Stebelton, CPA, CFE Director, Product Management – Oracle Brian Amato, CPA, CISA Director, Client Services – Fulcrum Way Reza B’Far Vice President, Development – Oracle
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal5 Program Agenda  Twitter Topic Review  Oracle Advanced Controls Overview - Mark  Implementation Review, Tips and Tricks - Brian  GRC Extensibility - Reza  Questions
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal6 Oracle Advanced Controls Product Overview
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal7 Standard Controls User Roles 3-Way Match Approval Hierarchies Standard Controls Social Media Policy E-learning Ethics Policy
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal8 Standard + Advanced Controls Sentiment Analysis Split Purchase Orders Hide Displays of Sensitive Data Duplicate Payments Transaction Threshold Amounts Duplicate Vendors Fine- grained User Access Configuration Snapshots & Audit Trial Transaction Pattern Analysis Fuzzy Logic, ‘similar values’ User Roles 3-Way Match Approval Hierarchies Advanced Controls Standard Controls Social Media Policy E-learning Ethics Policy
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal9 GRC Advanced Controls One Enterprise Foundation Enterprise Risk & Controls Foundation Dashboards, Reports and Alerts NotificationsWorklists Email PerspectivesSearch Risk, Controls & Compliance Management ReviewsDocumentation Assessments RemediationSurveys Continuous Controls & Risk Monitoring SetupsAccess Master Data Audit TestsTransactions User Authored ControlsData Connectors Fraud & Error Patterns RoleBasedAccessSecurity WebServices&APIs Custom or Legacy Applications Comprehensive  Enterprise Risk Management  Financial Governance  Continuous Controls Monitoring Flexible • Graphical Authoring • Detect and Prevent • Access, Transactions, Setups Data Driven (Big Data)  100% of Transactions  Manage by Exception  Optimize Processes
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal10 Fusion Platform with Dashboards, Alerts & Drilldowns Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal10 Advanced Controls Approach
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal11 • Embedded intelligence provides visibility into multiple control and process areas. Advanced Controls – Embedded Dashboards
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal12 • Move away from silo’d information • Multiple ERPs monitored from a single application. Advanced Controls – Embedded Dashboards
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal13 • Automatic alerts notify appropriate personnel for action • Actionable Insight to drive the business forward Advanced Controls – Business Process Monitoring
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal14 Sophisticated Controls Monitoring and Enforcement Engine Advanced Controls Demonstration Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal14
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal15 Technical Innovation (Engine) Function: Tracking POs Form: Receiving User: John Doe Role: Shipping Supervisor Function: Purchase Orders Tab: Review PO Vendor: Acme Transaction: Order 123 Action: Submit PO Action: Signature Receipt Role: Shipping Clerk Correlate Events and Detect Policy Violation  Complete User Access Path  Relate Access to Actual Transactions  Connect to any provisioning engine  Extend to any authorization model
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal16 Oracle SOD Solution - Principles PLATFORM CAPABILITY BUSINESS BENEFIT Analysis of privileges at atomic level Ensure reliance by external auditors, eliminate both false positives and false negatives. Analysis across multiple applications and instances Enable SOD policies for users with privileges across multiple applications and/or instances Analysis for any authorization model Enable enforcement of SOD policies for any critical business application Capture entire User Access Path Enable optimal resolution of SOD conflicts, by redesign of roles and privileges Web Services to work with any user provisioning workflow Enable compliant provisioning that is agnostic to multiple user provisioning workflows Automatic status updates of violations with Visual Audit Trail Reduced analysis and remediation efforts by self-learning based on prior decisions Integration with SOA to automate SOD exception actions Integration with SOA to allow tailored integrations with existing workflows applications Exception-based user access attestation process Eliminate redundant effort to attest every quarter if nothing has changed (position, roles etc) Automated SOD Policy Documentation and Assessment Comprehensive documentation and automated periodic assessment of SOD policies SOD Platform Requirements for Enterprise Scale Customers
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal17 Access Analysis Create Conflict Conditions • Single/Cross Platform • Entitlement/Single Access Point Remove False Positives
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal18 Macro and Micro Access Controls Examples Define Entitlements: Enter Invoice Element Description Open Interface Invoices AP_APXIIFIX Invoice Batches AP_APXINWKB_BATCHES Invoices AP_APXINWKB Entitlements: Create Suppliers Element Description Vendors APXVDMVD Enter Suppliers PN_APXVDMVD Suppliers AP_APXVDMVD Merge Suppliers AP_APXVDDUP Macro Access Control Enter Invoice & Create Suppliers EBS Example Distinct Micro Access Controls Open Interface Invoices vs Vendors Open Interface Invoices vs Enter Suppliers Open Interface Invoices vs Suppliers Open Interface Invoices vs Merge Suppliers Invoice Batches vs Vendors Invoice Batches vs Enter Suppliers Invoice Batches vs Suppliers Invoice Batches vs Merge Suppliers Invoices vs Vendors Invoices vs Enter Suppliers Invoices vs Suppliers Invoices vs Merge Suppliers Translates To When entitlements are used, each access point in the entitlement is considered as an ‘or’ in relation to the others
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal19 Remove False Positives Define Examples • Exclude inactive users • Exclude specific superuser Responsibilities • Exclude when not in the same operating unit or ledger • Include only for a single business unit User Defined Access Points • Define a specific path to analyze • Build using the access points of the target datasource • Use as any other access point Condition Approaches • Specifically Include • Specifically Exclude Condition Types • Global – apply to ALL models and controls • Global Path – Exclude a specific access path • Model/Control Level – applies only to that model/control Examples • EBS: Responsibility>Menu>Function • PSFT: Menu>Component>Page
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal20 Elevated Productivity – Optimize Process & Empower Users • Library of pre- definedAdvanced Controls (and extensible) • Ability to build new controls by business owners (no coding) • 100% Transaction coverage (no more sampling) Transaction Controls – Author, Deploy, & Monitor
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal21 Transaction Filtering Logic String, Integer NumericDateFunctions ANDOR
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal22 Many Types of Controls against Various Business Applications Advanced Controls Demonstration
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal23 Access Hierarchy Example – Oracle EBS Role Responsibility Menu Sub - Menu Function: Create Invoice Function: Create Customer Other important attributes: Operating Units, Data Groups, Set of Books etc Access Points
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal24 Access Connector Example: EBS • Covers critical access points across business processes in EBS including Financials, HR, Procure to Pay and Order to Cash • Includes 2,500+ Micro Access Controls • Includes 28,000+ Access Points available for extending controls ~1,700 Responsibilities* ~5,400 Menus* ~4,700 Concurrent Programs* ~16,500 Functions* * Amounts will vary by environment ~28,300 Access Points*
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal25 TXN SYSTEMS USERS ROLES USERS SETUPS MASTER DATA ROLES TXN SYSTEMS TXN ROLES TXNUSERS SETUPS TXN ROLES SYSTEMS MASTER DATA ROLES TXN TXN SETUPS Enterprise Risk Graph
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal26 Access AND Transaction SOD Analysis EBS EMEA SYSTEM JOHN USER Receivables ADMIN ROLE CUSTOMER MENU CUSTOMER ENTRY SUBMENU QUICK UPDATE SUBMENU EDIT CUSTOMER FUNCTION ORDER MGT MENU ORDER ERNTRY SUBMENU ORDER RELEASE FUNCTION JOHN CHANGES CUSTOMER SHIPTO FOR ACME AND PROCESSES ORDER FOR ACME
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal27 Sensitive Transaction Controls (aka Superuser Analysis) Sensitive Access Monitoring Controls 11020 STC: Monitor Payments 2370 SAM: Same user created Payables Invoice and Payment 11030 STC: Monitor Purchase Orders 2380 SAM: Same user created Purchase Order and Payables Invoice 11050 STC: Monitor Suppliers S390 SAM: Same user created Purchase Order and Received Goods and Services 11070 STC: Monitor Procurement Payment Terms 2400 SAM: Same user created Supplier and Approved Purchase Order 11100 STC: Monitor Payables Bank Accounts 8570 SAM: Same user created Supplier and Payables Invoice 11110 STC: Monitor Payables System Setups 2420 SAM: Same user created Supplier and Payment 11120 STC: Monitor Payables Options: Payments 2430 SAM: Same user created Supplier and Purchase Order 11140 STC: Monitor Payables Options: Tax 2730 SAM: Same user created Journal Entry and Payables Invoice 11180 STC: Monitor Payables Options: Invoices 2770 SAM: Same user created Journal Entry and posted Journal Entry 11210 STC: Monitor Journal Entries 2570 SAM: Same user created Supplier and setup Auto Create Purchase Orders Sensitive (Superuser) Transaction and Sensitive Access Monitoring Top 10 Deployed SOD Transaction Controls21
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal28 Advanced Access and Security
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal29 AACG – Finding Conflicts User: Janie Adams Responsibility: Sales Super User (Operations) Menu: AR_Navigate_GUI12 Submenu: AZN_AR_Invoices_Entry Function: Order Page: Create Customer Job Role: Receivables Management Permission: Create Cutomers SOD Conflict PSFT EBS
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal30 Interpreting Access Conflicts  User Role Permission List  Menu  Panel Component  Page Definition Finding the Right Path to Resolution U R M C D L Remove Menu Path Conflicts
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal31  Identify the changes to be made  Click to create a change management work order  Review impact of changes  Create change request work order for System Administrator Know the Impact Before Committing Changes to the ERP Simulate Changes
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal32 The FulcrumWay Experience
Advanced Access and User Security for EBS and Oracle Fusion Applications Brian Amato, CPA, CISA Client Service Director - FulcrumWay
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal34 Agenda  Objectives, Drivers, Scope  Implementation Approach  Achievements and Benefits  Lessons learned  GRC Extensibility
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal35 Objectives, Drivers, Scope  Upgrade 8.6.3 to 8.6.4  Analyze SOD risks for EBS Financials and PSFT HR and Payroll  Define conditions to remove false positives  Implement new security model
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal36 Implementation Approach  Risk-Based Approach  Used Oracle’s seeded content  Understand changes from 8.6.3 to 8.6.4
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal37 Assess Risk Detect Violations Analyze Issues Remediate Issues Implement Corrective Actions Monitor Application Environment Scope Application Controls Sample ERP Data Manage Exceptions Setup Preventive Controls IT/Business Control Teams Application Controls Manager Application Security Administrator Application Controls Manager Establish Test Environment FulcrumWay™ Application Controls Management Best Practices
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal38 Oracle Seeded Content Human Resources User Access Model Names Maintain Employees & Modify Employee Salary Maintain Employees & Process Payroll Modify Employee Position & Process Payroll Modify Employee Position & Maintain Employees Modify Employee Position & Modify Employee Salary Process Payroll & Modify Employee Salary
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal39 New Features in 8.6.4  User Experience  New Content  Relationship Assignments  Improved Search and Detection Engine  Setup and Administration  Performance Optimization  New Security Model
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal40 Achievements and Benefits  Able to secure EBS Financial data from HR/Payroll data!  Running Single Instance of AACG for EBS Financials and PeopleSoft HR/Payroll  Lower costs of compliance  Lower costs IT burden and increased agility
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal41 Lessons Learned  Hardware/Software Certification Matrix  PeopleSoft Security Model  AACG Security Model
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal42 Role Permission List Menu Component Page Definition Component Page Definition Access Hierarchy – PeopleSoft Access Points Evaluate User Access • Test by User Profile • Test by Page User Profile
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal43 Access Hierarchy – Oracle EBS Role Responsibility Menu Sub - Menu Function Function Access Points
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal44 8.6.4 Security Model
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal45 8.6.4 Security Model Security Components
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal46 8.6.4 Security Model  Leveraging Perspectives to Plan Design AACG Security, Incident Management  Examples of Perspectives aid in the definition of Data Roles  Perspective can span multiple ERP instances, types (PS, EBS)  A Perspective gets created for each datasource  Perspectives can define which users have security to AACG Controls and Incidents
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal47 GRC Extensibility  AACG with EBS and PeopleSoft
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal48 The Extensibility of Oracle Advanced Controls
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal49 Pre-Built Integrations Custom or Legacy Applications Continuous SOD Controls Monitoring Pre-built Extensible Partner Pre-built CUSTOMER CARE & BILLING
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal50 What is Extension?  Work done by end users and their developers to add new abilities to GRCC WHY IS IT VALUABLE?  Gives you the ability to extend standard functionality to meet your unique needs WHAT PRODUCT DOES IT SPAN?  EGRCM and EGRCC 8.x in a Single Platform Ways to Extend GRCC Expertise Create a new… End user Model Control Incident Developer Business object Connector Pattern API/Web Service
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal51 ConnectorsControls General Domain Knowledge (Financial, Medical, SCM, etc.) Business Application System Experts (EBS, PSFT, etc.) Skill Set Required Application Engineer or Software Engineer Actuarial Skills Specific Domain Knowledge (P2P, GL, T&E, etc.) Business Objects Advanced Extensions Required Preferred Not Required DBA's, ETL Users or Analytic App. Builders • Allows us to build an internal factory for building meta-data cost-effectively • Provides the platform for a future ecosystem of meta-data • SDLC: Minimizing risk in execution through reduction of Knowledge Diffusion Risk Management Clearly Separated Skill Sets
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal52 High-Level Platform Extensibility Points • Getting Data into GRC for Analysis • OWL (Ontology Web Language) – an XML language • Web Services • Custom Objects • Advanced extensions – Java • Extending the Workflows & Reporting • Both RESTful & SOAP Web Services available • SOA Integration out of the box • Data Analytics for Custom Reporting and Dashboards • Physical and Logical Security that follows the GRC Security Model
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal53 Focus – GRC Controls Extensibility • Takes a picture of various aspects of your system • Authorization model • Transaction model • Others • Then, it searches for exceptions (violations) • Controls are the criteria the system uses to search • Points of Extensibility: • Different ways by which it searches • Different data sources through which it searches • Different ways it can provide the results (web services, etc.) • Provides workflows for remediation of the exceptions
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal54 When do you need extensibility?  Connecting to a custom application or COTS/ERP For which there exists no pre-built connector  Custom data or behavior that needs to be added to application(s) that aren’t supported out of the box (PSFT, EBS, etc.)  Adding custom reports to the system – Data Analytics data-mart provides an open analytic schema for all discovered violations and other data for custom reports – Robust security model for the analytic data-marts  Besides extensibility, a core feature of the product is custom objects – you can import, directly into the user interface of the application, data through a spreadsheet format (Microsoft Excel).
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal55 Examples of Extensibility Extensibility Point Use-Case GRC Web Services User Provisioning Requests (OIM, Fusion, etc.) using GRC API’s for near-real-time checks to see if a user should be provisioned a given set of roles. GRC Connectors UCM Connector allowing expense receipts of hotel folios, etc. be analyzed using the GRC Text Analysis and reasoning engine GRC Connectors Connecting to Health-Care applications via their native protocols or HL7 to find Health-Care fraud and/or waste. Workflow Extensibility EGRCM and EGRCC SOA (SOAP), REST, and BPEL Extensibility Data Analytics Custom Reports and Analytics
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal56 GRC Data Analytics  GRC Transactional Schema is CLOSED. – You may not access it. GRC Data Analytics is a way for you to extract data to build your own reports and analytics  GRC Data Analytic Schema Includes: – Summarized data in a properly normalized format for reporting (fact tables, dimensions, and other normalized forms – all tuned for the purposes of reporting and analytic dashboards) – Full physical and logical security: GRC Users and Roles become Database Users and Views allowing proper mirroring of data-level security in the application – Populated on-demand or on scheduled bases – Will include data for both EGRCC and EGRCM
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal57 Conclusion
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal58 “ …only two years after the implementation…,the external auditor relies 100 percent on Oracle GRC to assess security segregation of duties at the client.” - PwC Impact of Oracle Advanced Controls PwC Case Study Addressed material weakness resulting from security and compliance issues Inappropriate access being granted Access granted without approval Access not reviewed Access not approved in timely manner Source : PwC Whitepaper : Optimizing ERP Projects with GRC’s Advanced Financial Controls
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal59 ?’s
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal60 @OracleAdvCntrls Oracle GRC Advanced Controls Join Our Linkedin Group Follow us on Twitter
Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal61 The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.

Recomendados

AppSphere 2016 - Automate performance testing with AppDynamics using continuo...
AppSphere 2016 - Automate performance testing with AppDynamics using continuo...AppSphere 2016 - Automate performance testing with AppDynamics using continuo...
AppSphere 2016 - Automate performance testing with AppDynamics using continuo...Brad Stoner
 
Part II of III: Advanced Authorization for SAP Global Deployments: September ...
Part II of III: Advanced Authorization for SAP Global Deployments: September ...Part II of III: Advanced Authorization for SAP Global Deployments: September ...
Part II of III: Advanced Authorization for SAP Global Deployments: September ...NextLabs, Inc.
 
Gourav ladha - Profile
Gourav ladha - ProfileGourav ladha - Profile
Gourav ladha - ProfileGourav Ladha
 
Wise Men- SAP GRC Webinar Deck- March 2015
Wise Men- SAP GRC Webinar Deck- March 2015Wise Men- SAP GRC Webinar Deck- March 2015
Wise Men- SAP GRC Webinar Deck- March 2015Wise Men
 
Oracle Identity Governance - Customer Presentation
Oracle Identity Governance - Customer PresentationOracle Identity Governance - Customer Presentation
Oracle Identity Governance - Customer PresentationDelivery Centric
 
Read Access Logging (RAL) for SAP NetWeaver Overview
Read Access Logging (RAL) for SAP NetWeaver OverviewRead Access Logging (RAL) for SAP NetWeaver Overview
Read Access Logging (RAL) for SAP NetWeaver OverviewSAP Technology
 
SAP NetWeaver Application Server Add-On for Code Vulnerability Analysis Overview
SAP NetWeaver Application Server Add-On for Code Vulnerability Analysis OverviewSAP NetWeaver Application Server Add-On for Code Vulnerability Analysis Overview
SAP NetWeaver Application Server Add-On for Code Vulnerability Analysis OverviewSAP Technology
 
AppDynamics- A sneak peak into the product that is disrupting the Application...
AppDynamics- A sneak peak into the product that is disrupting the Application...AppDynamics- A sneak peak into the product that is disrupting the Application...
AppDynamics- A sneak peak into the product that is disrupting the Application...Codemotion
 

Recomendados

AppSphere 2016 - Automate performance testing with AppDynamics using continuo...
AppSphere 2016 - Automate performance testing with AppDynamics using continuo...AppSphere 2016 - Automate performance testing with AppDynamics using continuo...
AppSphere 2016 - Automate performance testing with AppDynamics using continuo...Brad Stoner
 
Part II of III: Advanced Authorization for SAP Global Deployments: September ...
Part II of III: Advanced Authorization for SAP Global Deployments: September ...Part II of III: Advanced Authorization for SAP Global Deployments: September ...
Part II of III: Advanced Authorization for SAP Global Deployments: September ...NextLabs, Inc.
 
Gourav ladha - Profile
Gourav ladha - ProfileGourav ladha - Profile
Gourav ladha - ProfileGourav Ladha
 
Wise Men- SAP GRC Webinar Deck- March 2015
Wise Men- SAP GRC Webinar Deck- March 2015Wise Men- SAP GRC Webinar Deck- March 2015
Wise Men- SAP GRC Webinar Deck- March 2015Wise Men
 
Oracle Identity Governance - Customer Presentation
Oracle Identity Governance - Customer PresentationOracle Identity Governance - Customer Presentation
Oracle Identity Governance - Customer PresentationDelivery Centric
 
Read Access Logging (RAL) for SAP NetWeaver Overview
Read Access Logging (RAL) for SAP NetWeaver OverviewRead Access Logging (RAL) for SAP NetWeaver Overview
Read Access Logging (RAL) for SAP NetWeaver OverviewSAP Technology
 
SAP NetWeaver Application Server Add-On for Code Vulnerability Analysis Overview
SAP NetWeaver Application Server Add-On for Code Vulnerability Analysis OverviewSAP NetWeaver Application Server Add-On for Code Vulnerability Analysis Overview
SAP NetWeaver Application Server Add-On for Code Vulnerability Analysis OverviewSAP Technology
 
AppDynamics- A sneak peak into the product that is disrupting the Application...
AppDynamics- A sneak peak into the product that is disrupting the Application...AppDynamics- A sneak peak into the product that is disrupting the Application...
AppDynamics- A sneak peak into the product that is disrupting the Application...Codemotion
 
Demystifying Robotic Process Automation (RPA) & Automation Testing
Demystifying Robotic Process Automation (RPA) & Automation TestingDemystifying Robotic Process Automation (RPA) & Automation Testing
Demystifying Robotic Process Automation (RPA) & Automation TestingCitiusTech
 
R12 opm api
R12 opm apiR12 opm api
R12 opm apiDheeraj Thapa
 
Implementing Cloud Financials
Implementing Cloud FinancialsImplementing Cloud Financials
Implementing Cloud FinancialsNERUG
 
Primavera integration possibilities technical overview ppt
Primavera integration possibilities technical overview pptPrimavera integration possibilities technical overview ppt
Primavera integration possibilities technical overview pptp6academy
 
Kiran_CV
Kiran_CVKiran_CV
Kiran_CVkiran kumar
 
Quality Analyst with 5 yrs Exp
Quality Analyst with 5 yrs ExpQuality Analyst with 5 yrs Exp
Quality Analyst with 5 yrs ExpJustin Jacob
 
Microservices: A Step Towards Modernizing Healthcare Applications
Microservices: A Step Towards Modernizing Healthcare ApplicationsMicroservices: A Step Towards Modernizing Healthcare Applications
Microservices: A Step Towards Modernizing Healthcare ApplicationsCitiusTech
 
Oracle Fusion & Cloud Applications Overview
Oracle Fusion & Cloud Applications OverviewOracle Fusion & Cloud Applications Overview
Oracle Fusion & Cloud Applications OverviewAhmed El-Demasy
 
Oracle mobile cloud service
Oracle mobile cloud serviceOracle mobile cloud service
Oracle mobile cloud serviceshravan kumar chelika
 
Oracle Fusion Application
Oracle Fusion ApplicationOracle Fusion Application
Oracle Fusion ApplicationArman Sadat Hossain
 
Mastering the Administration of your AppDynamics Deployment - AppSphere16
Mastering the Administration of your AppDynamics Deployment - AppSphere16Mastering the Administration of your AppDynamics Deployment - AppSphere16
Mastering the Administration of your AppDynamics Deployment - AppSphere16AppDynamics
 
206520 p6 web services programming interface
206520 p6 web services programming interface206520 p6 web services programming interface
206520 p6 web services programming interfacep6academy
 
ofs-R-modeling-framework
ofs-R-modeling-frameworkofs-R-modeling-framework
ofs-R-modeling-frameworkShiny Koshy Vaidyan
 
Unified Connectivity (UCON) for SAP NetWeaver Overview
Unified Connectivity (UCON) for SAP NetWeaver OverviewUnified Connectivity (UCON) for SAP NetWeaver Overview
Unified Connectivity (UCON) for SAP NetWeaver OverviewSAP Technology
 
Case study: Managing a Fusion Financials Cloud Implementation with Oracle Uni...
Case study: Managing a Fusion Financials Cloud Implementation with Oracle Uni...Case study: Managing a Fusion Financials Cloud Implementation with Oracle Uni...
Case study: Managing a Fusion Financials Cloud Implementation with Oracle Uni...Jade Global
 
Primavera integration possibilities Technical overview - Oracle Primavera Col...
Primavera integration possibilities Technical overview - Oracle Primavera Col...Primavera integration possibilities Technical overview - Oracle Primavera Col...
Primavera integration possibilities Technical overview - Oracle Primavera Col...p6academy
 
Extensibility
ExtensibilityExtensibility
Extensibilitymohamed refaei
 
Con8442 fusion functional setup manager
Con8442 fusion functional setup managerCon8442 fusion functional setup manager
Con8442 fusion functional setup managerBerry Clemens
 
205410 primavera and sap
205410 primavera and sap205410 primavera and sap
205410 primavera and sapp6academy
 
Resume_QA_8_Yrs_Exp_Vijay
Resume_QA_8_Yrs_Exp_VijayResume_QA_8_Yrs_Exp_Vijay
Resume_QA_8_Yrs_Exp_VijayVijay Bichkar
 
Optimizing order to-cash (e-business suite) with GRC Advanced Controls
Optimizing order to-cash (e-business suite) with GRC Advanced ControlsOptimizing order to-cash (e-business suite) with GRC Advanced Controls
Optimizing order to-cash (e-business suite) with GRC Advanced ControlsOracle
 
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & Implementations
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & ImplementationsThousands of Hours Saved and Risk Reduced for EBS Upgrades & Implementations
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & ImplementationsOracle
 

Mais conteúdo relacionado

Mais procurados

Demystifying Robotic Process Automation (RPA) & Automation Testing
Demystifying Robotic Process Automation (RPA) & Automation TestingDemystifying Robotic Process Automation (RPA) & Automation Testing
Demystifying Robotic Process Automation (RPA) & Automation TestingCitiusTech
 
Implementing Cloud Financials
Implementing Cloud FinancialsImplementing Cloud Financials
Implementing Cloud FinancialsNERUG
 
Primavera integration possibilities technical overview ppt
Primavera integration possibilities technical overview pptPrimavera integration possibilities technical overview ppt
Primavera integration possibilities technical overview pptp6academy
 
Quality Analyst with 5 yrs Exp
Quality Analyst with 5 yrs ExpQuality Analyst with 5 yrs Exp
Quality Analyst with 5 yrs ExpJustin Jacob
 
Microservices: A Step Towards Modernizing Healthcare Applications
Microservices: A Step Towards Modernizing Healthcare ApplicationsMicroservices: A Step Towards Modernizing Healthcare Applications
Microservices: A Step Towards Modernizing Healthcare ApplicationsCitiusTech
 
Oracle Fusion & Cloud Applications Overview
Oracle Fusion & Cloud Applications OverviewOracle Fusion & Cloud Applications Overview
Oracle Fusion & Cloud Applications OverviewAhmed El-Demasy
 
Mastering the Administration of your AppDynamics Deployment - AppSphere16
Mastering the Administration of your AppDynamics Deployment - AppSphere16Mastering the Administration of your AppDynamics Deployment - AppSphere16
Mastering the Administration of your AppDynamics Deployment - AppSphere16AppDynamics
 
206520 p6 web services programming interface
206520 p6 web services programming interface206520 p6 web services programming interface
206520 p6 web services programming interfacep6academy
 
Unified Connectivity (UCON) for SAP NetWeaver Overview
Unified Connectivity (UCON) for SAP NetWeaver OverviewUnified Connectivity (UCON) for SAP NetWeaver Overview
Unified Connectivity (UCON) for SAP NetWeaver OverviewSAP Technology
 
Case study: Managing a Fusion Financials Cloud Implementation with Oracle Uni...
Case study: Managing a Fusion Financials Cloud Implementation with Oracle Uni...Case study: Managing a Fusion Financials Cloud Implementation with Oracle Uni...
Case study: Managing a Fusion Financials Cloud Implementation with Oracle Uni...Jade Global
 
Primavera integration possibilities Technical overview - Oracle Primavera Col...
Primavera integration possibilities Technical overview - Oracle Primavera Col...Primavera integration possibilities Technical overview - Oracle Primavera Col...
Primavera integration possibilities Technical overview - Oracle Primavera Col...p6academy
 
Con8442 fusion functional setup manager
Con8442 fusion functional setup managerCon8442 fusion functional setup manager
Con8442 fusion functional setup managerBerry Clemens
 
205410 primavera and sap
205410 primavera and sap205410 primavera and sap
205410 primavera and sapp6academy
 
Resume_QA_8_Yrs_Exp_Vijay
Resume_QA_8_Yrs_Exp_VijayResume_QA_8_Yrs_Exp_Vijay
Resume_QA_8_Yrs_Exp_VijayVijay Bichkar
 

Mais procurados (20)

Demystifying Robotic Process Automation (RPA) & Automation Testing
Demystifying Robotic Process Automation (RPA) & Automation TestingDemystifying Robotic Process Automation (RPA) & Automation Testing
Demystifying Robotic Process Automation (RPA) & Automation Testing
 
R12 opm api
R12 opm apiR12 opm api
R12 opm api
 
Implementing Cloud Financials
Implementing Cloud FinancialsImplementing Cloud Financials
Implementing Cloud Financials
 
Primavera integration possibilities technical overview ppt
Primavera integration possibilities technical overview pptPrimavera integration possibilities technical overview ppt
Primavera integration possibilities technical overview ppt
 
Kiran_CV
Kiran_CVKiran_CV
Kiran_CV
 
Quality Analyst with 5 yrs Exp
Quality Analyst with 5 yrs ExpQuality Analyst with 5 yrs Exp
Quality Analyst with 5 yrs Exp
 
Microservices: A Step Towards Modernizing Healthcare Applications
Microservices: A Step Towards Modernizing Healthcare ApplicationsMicroservices: A Step Towards Modernizing Healthcare Applications
Microservices: A Step Towards Modernizing Healthcare Applications
 
Oracle Fusion & Cloud Applications Overview
Oracle Fusion & Cloud Applications OverviewOracle Fusion & Cloud Applications Overview
Oracle Fusion & Cloud Applications Overview
 
Oracle mobile cloud service
Oracle mobile cloud serviceOracle mobile cloud service
Oracle mobile cloud service
 
Oracle Fusion Application
Oracle Fusion ApplicationOracle Fusion Application
Oracle Fusion Application
 
Mastering the Administration of your AppDynamics Deployment - AppSphere16
Mastering the Administration of your AppDynamics Deployment - AppSphere16Mastering the Administration of your AppDynamics Deployment - AppSphere16
Mastering the Administration of your AppDynamics Deployment - AppSphere16
 
206520 p6 web services programming interface
206520 p6 web services programming interface206520 p6 web services programming interface
206520 p6 web services programming interface
 
ofs-R-modeling-framework
ofs-R-modeling-frameworkofs-R-modeling-framework
ofs-R-modeling-framework
 
Unified Connectivity (UCON) for SAP NetWeaver Overview
Unified Connectivity (UCON) for SAP NetWeaver OverviewUnified Connectivity (UCON) for SAP NetWeaver Overview
Unified Connectivity (UCON) for SAP NetWeaver Overview
 
Case study: Managing a Fusion Financials Cloud Implementation with Oracle Uni...
Case study: Managing a Fusion Financials Cloud Implementation with Oracle Uni...Case study: Managing a Fusion Financials Cloud Implementation with Oracle Uni...
Case study: Managing a Fusion Financials Cloud Implementation with Oracle Uni...
 
Primavera integration possibilities Technical overview - Oracle Primavera Col...
Primavera integration possibilities Technical overview - Oracle Primavera Col...Primavera integration possibilities Technical overview - Oracle Primavera Col...
Primavera integration possibilities Technical overview - Oracle Primavera Col...
 
Extensibility
ExtensibilityExtensibility
Extensibility
 
Con8442 fusion functional setup manager
Con8442 fusion functional setup managerCon8442 fusion functional setup manager
Con8442 fusion functional setup manager
 
205410 primavera and sap
205410 primavera and sap205410 primavera and sap
205410 primavera and sap
 
Resume_QA_8_Yrs_Exp_Vijay
Resume_QA_8_Yrs_Exp_VijayResume_QA_8_Yrs_Exp_Vijay
Resume_QA_8_Yrs_Exp_Vijay
 

Semelhante a Advanced Controls access and user security for superusers con8824

Optimizing order to-cash (e-business suite) with GRC Advanced Controls
Optimizing order to-cash (e-business suite) with GRC Advanced ControlsOptimizing order to-cash (e-business suite) with GRC Advanced Controls
Optimizing order to-cash (e-business suite) with GRC Advanced ControlsOracle
 
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & Implementations
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & ImplementationsThousands of Hours Saved and Risk Reduced for EBS Upgrades & Implementations
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & ImplementationsOracle
 
Integrate Oracle Identity Management and Advanced Controls for maximum effici...
Integrate Oracle Identity Management and Advanced Controls for maximum effici...Integrate Oracle Identity Management and Advanced Controls for maximum effici...
Integrate Oracle Identity Management and Advanced Controls for maximum effici...Oracle
 
Con9573 managing the oim platform with oracle enterprise manager
Con9573 managing the oim platform with oracle enterprise manager Con9573 managing the oim platform with oracle enterprise manager
Con9573 managing the oim platform with oracle enterprise manager OracleIDM
 
Ppt dbsec-oow2013-avdf
Ppt dbsec-oow2013-avdfPpt dbsec-oow2013-avdf
Ppt dbsec-oow2013-avdfMelody Liu
 
Con8813 securing privileged accounts with an integrated idm solution - final
Con8813 securing privileged accounts with an integrated idm solution - finalCon8813 securing privileged accounts with an integrated idm solution - final
Con8813 securing privileged accounts with an integrated idm solution - finalOracleIDM
 
#OOW16 - Introduction to Advanced Access Controls
#OOW16 - Introduction to Advanced Access Controls#OOW16 - Introduction to Advanced Access Controls
#OOW16 - Introduction to Advanced Access ControlsDane Roberts
 
Reduce sod access violations with effective roles management techniques
Reduce sod access violations with effective roles management techniquesReduce sod access violations with effective roles management techniques
Reduce sod access violations with effective roles management techniquesactjax
 
Monitoring in the DevOps Era
Monitoring in the DevOps EraMonitoring in the DevOps Era
Monitoring in the DevOps EraMike Kavis
 
7. oracle iam11g+strategyodrom
7. oracle iam11g+strategyodrom7. oracle iam11g+strategyodrom
7. oracle iam11g+strategyodromDoina Draganescu
 
Why use trace cloud to manage your requirements (includes audio)
Why use trace cloud to manage your requirements (includes audio)Why use trace cloud to manage your requirements (includes audio)
Why use trace cloud to manage your requirements (includes audio)Shambhavi Roy
 
SoftwareONE Oracle Licensing Introduction 18.02.14
SoftwareONE Oracle Licensing Introduction 18.02.14SoftwareONE Oracle Licensing Introduction 18.02.14
SoftwareONE Oracle Licensing Introduction 18.02.14SoftwareONEPresents
 
Integrating Enterprise Controls with the Cloud
Integrating Enterprise Controls with the CloudIntegrating Enterprise Controls with the Cloud
Integrating Enterprise Controls with the CloudAtul Goyal
 
Introducing Oracle Advanced Financial Controls Cloud Service
Introducing Oracle Advanced Financial Controls Cloud ServiceIntroducing Oracle Advanced Financial Controls Cloud Service
Introducing Oracle Advanced Financial Controls Cloud ServiceDane Roberts
 
Con8819 context and risk aware access control any device any where - final
Con8819 context and risk aware access control any device any where - finalCon8819 context and risk aware access control any device any where - final
Con8819 context and risk aware access control any device any where - finalOracleIDM
 
Future of Oracle Forms AUSOUG 2013
Future of Oracle Forms AUSOUG 2013Future of Oracle Forms AUSOUG 2013
Future of Oracle Forms AUSOUG 2013Chris Muir
 
Self Service Access Control - Help Yourself to More Productivity
Self Service Access Control - Help Yourself to More ProductivitySelf Service Access Control - Help Yourself to More Productivity
Self Service Access Control - Help Yourself to More ProductivityAtul Goyal
 
Con8837 leverage authorization to monetize content and media subscriptions ...
Con8837 leverage authorization to monetize content and media subscriptions ...Con8837 leverage authorization to monetize content and media subscriptions ...
Con8837 leverage authorization to monetize content and media subscriptions ...OracleIDM
 
Con8811 converged identity governance for speeding up business and reducing c...
Con8811 converged identity governance for speeding up business and reducing c...Con8811 converged identity governance for speeding up business and reducing c...
Con8811 converged identity governance for speeding up business and reducing c...OracleIDM
 
Con8154 controlling for multiple erp systems with oracle advanced controls
Con8154 controlling for multiple erp systems with oracle advanced controlsCon8154 controlling for multiple erp systems with oracle advanced controls
Con8154 controlling for multiple erp systems with oracle advanced controlsOracle
 

Semelhante a Advanced Controls access and user security for superusers con8824 (20)

Optimizing order to-cash (e-business suite) with GRC Advanced Controls
Optimizing order to-cash (e-business suite) with GRC Advanced ControlsOptimizing order to-cash (e-business suite) with GRC Advanced Controls
Optimizing order to-cash (e-business suite) with GRC Advanced Controls
 
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & Implementations
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & ImplementationsThousands of Hours Saved and Risk Reduced for EBS Upgrades & Implementations
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & Implementations
 
Integrate Oracle Identity Management and Advanced Controls for maximum effici...
Integrate Oracle Identity Management and Advanced Controls for maximum effici...Integrate Oracle Identity Management and Advanced Controls for maximum effici...
Integrate Oracle Identity Management and Advanced Controls for maximum effici...
 
Con9573 managing the oim platform with oracle enterprise manager
Con9573 managing the oim platform with oracle enterprise manager Con9573 managing the oim platform with oracle enterprise manager
Con9573 managing the oim platform with oracle enterprise manager
 
Ppt dbsec-oow2013-avdf
Ppt dbsec-oow2013-avdfPpt dbsec-oow2013-avdf
Ppt dbsec-oow2013-avdf
 
Con8813 securing privileged accounts with an integrated idm solution - final
Con8813 securing privileged accounts with an integrated idm solution - finalCon8813 securing privileged accounts with an integrated idm solution - final
Con8813 securing privileged accounts with an integrated idm solution - final
 
#OOW16 - Introduction to Advanced Access Controls
#OOW16 - Introduction to Advanced Access Controls#OOW16 - Introduction to Advanced Access Controls
#OOW16 - Introduction to Advanced Access Controls
 
Reduce sod access violations with effective roles management techniques
Reduce sod access violations with effective roles management techniquesReduce sod access violations with effective roles management techniques
Reduce sod access violations with effective roles management techniques
 
Monitoring in the DevOps Era
Monitoring in the DevOps EraMonitoring in the DevOps Era
Monitoring in the DevOps Era
 
7. oracle iam11g+strategyodrom
7. oracle iam11g+strategyodrom7. oracle iam11g+strategyodrom
7. oracle iam11g+strategyodrom
 
Why use trace cloud to manage your requirements (includes audio)
Why use trace cloud to manage your requirements (includes audio)Why use trace cloud to manage your requirements (includes audio)
Why use trace cloud to manage your requirements (includes audio)
 
SoftwareONE Oracle Licensing Introduction 18.02.14
SoftwareONE Oracle Licensing Introduction 18.02.14SoftwareONE Oracle Licensing Introduction 18.02.14
SoftwareONE Oracle Licensing Introduction 18.02.14
 
Integrating Enterprise Controls with the Cloud
Integrating Enterprise Controls with the CloudIntegrating Enterprise Controls with the Cloud
Integrating Enterprise Controls with the Cloud
 
Introducing Oracle Advanced Financial Controls Cloud Service
Introducing Oracle Advanced Financial Controls Cloud ServiceIntroducing Oracle Advanced Financial Controls Cloud Service
Introducing Oracle Advanced Financial Controls Cloud Service
 
Con8819 context and risk aware access control any device any where - final
Con8819 context and risk aware access control any device any where - finalCon8819 context and risk aware access control any device any where - final
Con8819 context and risk aware access control any device any where - final
 
Future of Oracle Forms AUSOUG 2013
Future of Oracle Forms AUSOUG 2013Future of Oracle Forms AUSOUG 2013
Future of Oracle Forms AUSOUG 2013
 
Self Service Access Control - Help Yourself to More Productivity
Self Service Access Control - Help Yourself to More ProductivitySelf Service Access Control - Help Yourself to More Productivity
Self Service Access Control - Help Yourself to More Productivity
 
Con8837 leverage authorization to monetize content and media subscriptions ...
Con8837 leverage authorization to monetize content and media subscriptions ...Con8837 leverage authorization to monetize content and media subscriptions ...
Con8837 leverage authorization to monetize content and media subscriptions ...
 
Con8811 converged identity governance for speeding up business and reducing c...
Con8811 converged identity governance for speeding up business and reducing c...Con8811 converged identity governance for speeding up business and reducing c...
Con8811 converged identity governance for speeding up business and reducing c...
 
Con8154 controlling for multiple erp systems with oracle advanced controls
Con8154 controlling for multiple erp systems with oracle advanced controlsCon8154 controlling for multiple erp systems with oracle advanced controls
Con8154 controlling for multiple erp systems with oracle advanced controls
 

Mais de Oracle

Customers talk about controlling access for multiple erp systems with oracle ...
Customers talk about controlling access for multiple erp systems with oracle ...Customers talk about controlling access for multiple erp systems with oracle ...
Customers talk about controlling access for multiple erp systems with oracle ...Oracle
 
How your vendor master file is critical to governance, risk management and co...
How your vendor master file is critical to governance, risk management and co...How your vendor master file is critical to governance, risk management and co...
How your vendor master file is critical to governance, risk management and co...Oracle
 
Con8208 achieve a quicker and compliant financial close
Con8208 achieve a quicker and compliant financial closeCon8208 achieve a quicker and compliant financial close
Con8208 achieve a quicker and compliant financial closeOracle
 
Stop the fraudster! Pennsylvania Treasury, Industry Expert Chris Doxey and Fu...
Stop the fraudster! Pennsylvania Treasury, Industry Expert Chris Doxey and Fu...Stop the fraudster! Pennsylvania Treasury, Industry Expert Chris Doxey and Fu...
Stop the fraudster! Pennsylvania Treasury, Industry Expert Chris Doxey and Fu...Oracle
 
Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...
Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...
Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...Oracle
 
Comcast, Integra LifeSciences, LPL Financial, and Smucker's - Doing Your ERP ...
Comcast, Integra LifeSciences, LPL Financial, and Smucker's - Doing Your ERP ...Comcast, Integra LifeSciences, LPL Financial, and Smucker's - Doing Your ERP ...
Comcast, Integra LifeSciences, LPL Financial, and Smucker's - Doing Your ERP ...Oracle
 
GRC Advanced Controls OOW2014 Stop Financial Leakage - Cisco, Noble Energy, ...
GRC Advanced Controls OOW2014 Stop Financial Leakage - Cisco, Noble Energy, ...GRC Advanced Controls OOW2014 Stop Financial Leakage - Cisco, Noble Energy, ...
GRC Advanced Controls OOW2014 Stop Financial Leakage - Cisco, Noble Energy, ...Oracle
 
Oracle OpenWorld 2014 GRC events and sessions
Oracle OpenWorld 2014 GRC events and sessionsOracle OpenWorld 2014 GRC events and sessions
Oracle OpenWorld 2014 GRC events and sessionsOracle
 
Top 10 P2P Advanced Controls to improve your bottom line!
Top 10 P2P Advanced Controls to improve your bottom line!Top 10 P2P Advanced Controls to improve your bottom line!
Top 10 P2P Advanced Controls to improve your bottom line!Oracle
 
CFO.Com and Oracle - Improving Bottom Line with Advanced Controls
CFO.Com and Oracle - Improving Bottom Line with Advanced ControlsCFO.Com and Oracle - Improving Bottom Line with Advanced Controls
CFO.Com and Oracle - Improving Bottom Line with Advanced ControlsOracle
 
Chief Risk Officer, American Fidelity, strengthens secuirty with Advanced Con...
Chief Risk Officer, American Fidelity, strengthens secuirty with Advanced Con...Chief Risk Officer, American Fidelity, strengthens secuirty with Advanced Con...
Chief Risk Officer, American Fidelity, strengthens secuirty with Advanced Con...Oracle
 

Mais de Oracle (11)

Customers talk about controlling access for multiple erp systems with oracle ...
Customers talk about controlling access for multiple erp systems with oracle ...Customers talk about controlling access for multiple erp systems with oracle ...
Customers talk about controlling access for multiple erp systems with oracle ...
 
How your vendor master file is critical to governance, risk management and co...
How your vendor master file is critical to governance, risk management and co...How your vendor master file is critical to governance, risk management and co...
How your vendor master file is critical to governance, risk management and co...
 
Con8208 achieve a quicker and compliant financial close
Con8208 achieve a quicker and compliant financial closeCon8208 achieve a quicker and compliant financial close
Con8208 achieve a quicker and compliant financial close
 
Stop the fraudster! Pennsylvania Treasury, Industry Expert Chris Doxey and Fu...
Stop the fraudster! Pennsylvania Treasury, Industry Expert Chris Doxey and Fu...Stop the fraudster! Pennsylvania Treasury, Industry Expert Chris Doxey and Fu...
Stop the fraudster! Pennsylvania Treasury, Industry Expert Chris Doxey and Fu...
 
Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...
Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...
Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...
 
Comcast, Integra LifeSciences, LPL Financial, and Smucker's - Doing Your ERP ...
Comcast, Integra LifeSciences, LPL Financial, and Smucker's - Doing Your ERP ...Comcast, Integra LifeSciences, LPL Financial, and Smucker's - Doing Your ERP ...
Comcast, Integra LifeSciences, LPL Financial, and Smucker's - Doing Your ERP ...
 
GRC Advanced Controls OOW2014 Stop Financial Leakage - Cisco, Noble Energy, ...
GRC Advanced Controls OOW2014 Stop Financial Leakage - Cisco, Noble Energy, ...GRC Advanced Controls OOW2014 Stop Financial Leakage - Cisco, Noble Energy, ...
GRC Advanced Controls OOW2014 Stop Financial Leakage - Cisco, Noble Energy, ...
 
Oracle OpenWorld 2014 GRC events and sessions
Oracle OpenWorld 2014 GRC events and sessionsOracle OpenWorld 2014 GRC events and sessions
Oracle OpenWorld 2014 GRC events and sessions
 
Top 10 P2P Advanced Controls to improve your bottom line!
Top 10 P2P Advanced Controls to improve your bottom line!Top 10 P2P Advanced Controls to improve your bottom line!
Top 10 P2P Advanced Controls to improve your bottom line!
 
CFO.Com and Oracle - Improving Bottom Line with Advanced Controls
CFO.Com and Oracle - Improving Bottom Line with Advanced ControlsCFO.Com and Oracle - Improving Bottom Line with Advanced Controls
CFO.Com and Oracle - Improving Bottom Line with Advanced Controls
 
Chief Risk Officer, American Fidelity, strengthens secuirty with Advanced Con...
Chief Risk Officer, American Fidelity, strengthens secuirty with Advanced Con...Chief Risk Officer, American Fidelity, strengthens secuirty with Advanced Con...
Chief Risk Officer, American Fidelity, strengthens secuirty with Advanced Con...
 

Último

Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilV3cube
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processorsdebabhi2
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure servicePooja Nehwal
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Enterprise Knowledge
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 

Último (20)

Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of Brazil
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 

Advanced Controls access and user security for superusers con8824

  • 1. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal1
  • 2. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal2 @OracleAdvCntrls Post Questions Before, During and After
  • 3. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal3 The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.
  • 4. Advanced Access and User Security for Oracle Applications Mark Stebelton, CPA, CFE Director, Product Management – Oracle Brian Amato, CPA, CISA Director, Client Services – Fulcrum Way Reza B’Far Vice President, Development – Oracle
  • 5. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal5 Program Agenda  Twitter Topic Review  Oracle Advanced Controls Overview - Mark  Implementation Review, Tips and Tricks - Brian  GRC Extensibility - Reza  Questions
  • 6. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal6 Oracle Advanced Controls Product Overview
  • 7. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal7 Standard Controls User Roles 3-Way Match Approval Hierarchies Standard Controls Social Media Policy E-learning Ethics Policy
  • 8. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal8 Standard + Advanced Controls Sentiment Analysis Split Purchase Orders Hide Displays of Sensitive Data Duplicate Payments Transaction Threshold Amounts Duplicate Vendors Fine- grained User Access Configuration Snapshots & Audit Trial Transaction Pattern Analysis Fuzzy Logic, ‘similar values’ User Roles 3-Way Match Approval Hierarchies Advanced Controls Standard Controls Social Media Policy E-learning Ethics Policy
  • 9. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal9 GRC Advanced Controls One Enterprise Foundation Enterprise Risk & Controls Foundation Dashboards, Reports and Alerts NotificationsWorklists Email PerspectivesSearch Risk, Controls & Compliance Management ReviewsDocumentation Assessments RemediationSurveys Continuous Controls & Risk Monitoring SetupsAccess Master Data Audit TestsTransactions User Authored ControlsData Connectors Fraud & Error Patterns RoleBasedAccessSecurity WebServices&APIs Custom or Legacy Applications Comprehensive  Enterprise Risk Management  Financial Governance  Continuous Controls Monitoring Flexible • Graphical Authoring • Detect and Prevent • Access, Transactions, Setups Data Driven (Big Data)  100% of Transactions  Manage by Exception  Optimize Processes
  • 10. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal10 Fusion Platform with Dashboards, Alerts & Drilldowns Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal10 Advanced Controls Approach
  • 11. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal11 • Embedded intelligence provides visibility into multiple control and process areas. Advanced Controls – Embedded Dashboards
  • 12. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal12 • Move away from silo’d information • Multiple ERPs monitored from a single application. Advanced Controls – Embedded Dashboards
  • 13. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal13 • Automatic alerts notify appropriate personnel for action • Actionable Insight to drive the business forward Advanced Controls – Business Process Monitoring
  • 14. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal14 Sophisticated Controls Monitoring and Enforcement Engine Advanced Controls Demonstration Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal14
  • 15. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal15 Technical Innovation (Engine) Function: Tracking POs Form: Receiving User: John Doe Role: Shipping Supervisor Function: Purchase Orders Tab: Review PO Vendor: Acme Transaction: Order 123 Action: Submit PO Action: Signature Receipt Role: Shipping Clerk Correlate Events and Detect Policy Violation  Complete User Access Path  Relate Access to Actual Transactions  Connect to any provisioning engine  Extend to any authorization model
  • 16. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal16 Oracle SOD Solution - Principles PLATFORM CAPABILITY BUSINESS BENEFIT Analysis of privileges at atomic level Ensure reliance by external auditors, eliminate both false positives and false negatives. Analysis across multiple applications and instances Enable SOD policies for users with privileges across multiple applications and/or instances Analysis for any authorization model Enable enforcement of SOD policies for any critical business application Capture entire User Access Path Enable optimal resolution of SOD conflicts, by redesign of roles and privileges Web Services to work with any user provisioning workflow Enable compliant provisioning that is agnostic to multiple user provisioning workflows Automatic status updates of violations with Visual Audit Trail Reduced analysis and remediation efforts by self-learning based on prior decisions Integration with SOA to automate SOD exception actions Integration with SOA to allow tailored integrations with existing workflows applications Exception-based user access attestation process Eliminate redundant effort to attest every quarter if nothing has changed (position, roles etc) Automated SOD Policy Documentation and Assessment Comprehensive documentation and automated periodic assessment of SOD policies SOD Platform Requirements for Enterprise Scale Customers
  • 17. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal17 Access Analysis Create Conflict Conditions • Single/Cross Platform • Entitlement/Single Access Point Remove False Positives
  • 18. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal18 Macro and Micro Access Controls Examples Define Entitlements: Enter Invoice Element Description Open Interface Invoices AP_APXIIFIX Invoice Batches AP_APXINWKB_BATCHES Invoices AP_APXINWKB Entitlements: Create Suppliers Element Description Vendors APXVDMVD Enter Suppliers PN_APXVDMVD Suppliers AP_APXVDMVD Merge Suppliers AP_APXVDDUP Macro Access Control Enter Invoice & Create Suppliers EBS Example Distinct Micro Access Controls Open Interface Invoices vs Vendors Open Interface Invoices vs Enter Suppliers Open Interface Invoices vs Suppliers Open Interface Invoices vs Merge Suppliers Invoice Batches vs Vendors Invoice Batches vs Enter Suppliers Invoice Batches vs Suppliers Invoice Batches vs Merge Suppliers Invoices vs Vendors Invoices vs Enter Suppliers Invoices vs Suppliers Invoices vs Merge Suppliers Translates To When entitlements are used, each access point in the entitlement is considered as an ‘or’ in relation to the others
  • 19. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal19 Remove False Positives Define Examples • Exclude inactive users • Exclude specific superuser Responsibilities • Exclude when not in the same operating unit or ledger • Include only for a single business unit User Defined Access Points • Define a specific path to analyze • Build using the access points of the target datasource • Use as any other access point Condition Approaches • Specifically Include • Specifically Exclude Condition Types • Global – apply to ALL models and controls • Global Path – Exclude a specific access path • Model/Control Level – applies only to that model/control Examples • EBS: Responsibility>Menu>Function • PSFT: Menu>Component>Page
  • 20. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal20 Elevated Productivity – Optimize Process & Empower Users • Library of pre- definedAdvanced Controls (and extensible) • Ability to build new controls by business owners (no coding) • 100% Transaction coverage (no more sampling) Transaction Controls – Author, Deploy, & Monitor
  • 21. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal21 Transaction Filtering Logic String, Integer NumericDateFunctions ANDOR
  • 22. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal22 Many Types of Controls against Various Business Applications Advanced Controls Demonstration
  • 23. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal23 Access Hierarchy Example – Oracle EBS Role Responsibility Menu Sub - Menu Function: Create Invoice Function: Create Customer Other important attributes: Operating Units, Data Groups, Set of Books etc Access Points
  • 24. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal24 Access Connector Example: EBS • Covers critical access points across business processes in EBS including Financials, HR, Procure to Pay and Order to Cash • Includes 2,500+ Micro Access Controls • Includes 28,000+ Access Points available for extending controls ~1,700 Responsibilities* ~5,400 Menus* ~4,700 Concurrent Programs* ~16,500 Functions* * Amounts will vary by environment ~28,300 Access Points*
  • 25. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal25 TXN SYSTEMS USERS ROLES USERS SETUPS MASTER DATA ROLES TXN SYSTEMS TXN ROLES TXNUSERS SETUPS TXN ROLES SYSTEMS MASTER DATA ROLES TXN TXN SETUPS Enterprise Risk Graph
  • 26. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal26 Access AND Transaction SOD Analysis EBS EMEA SYSTEM JOHN USER Receivables ADMIN ROLE CUSTOMER MENU CUSTOMER ENTRY SUBMENU QUICK UPDATE SUBMENU EDIT CUSTOMER FUNCTION ORDER MGT MENU ORDER ERNTRY SUBMENU ORDER RELEASE FUNCTION JOHN CHANGES CUSTOMER SHIPTO FOR ACME AND PROCESSES ORDER FOR ACME
  • 27. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal27 Sensitive Transaction Controls (aka Superuser Analysis) Sensitive Access Monitoring Controls 11020 STC: Monitor Payments 2370 SAM: Same user created Payables Invoice and Payment 11030 STC: Monitor Purchase Orders 2380 SAM: Same user created Purchase Order and Payables Invoice 11050 STC: Monitor Suppliers S390 SAM: Same user created Purchase Order and Received Goods and Services 11070 STC: Monitor Procurement Payment Terms 2400 SAM: Same user created Supplier and Approved Purchase Order 11100 STC: Monitor Payables Bank Accounts 8570 SAM: Same user created Supplier and Payables Invoice 11110 STC: Monitor Payables System Setups 2420 SAM: Same user created Supplier and Payment 11120 STC: Monitor Payables Options: Payments 2430 SAM: Same user created Supplier and Purchase Order 11140 STC: Monitor Payables Options: Tax 2730 SAM: Same user created Journal Entry and Payables Invoice 11180 STC: Monitor Payables Options: Invoices 2770 SAM: Same user created Journal Entry and posted Journal Entry 11210 STC: Monitor Journal Entries 2570 SAM: Same user created Supplier and setup Auto Create Purchase Orders Sensitive (Superuser) Transaction and Sensitive Access Monitoring Top 10 Deployed SOD Transaction Controls21
  • 28. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal28 Advanced Access and Security
  • 29. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal29 AACG – Finding Conflicts User: Janie Adams Responsibility: Sales Super User (Operations) Menu: AR_Navigate_GUI12 Submenu: AZN_AR_Invoices_Entry Function: Order Page: Create Customer Job Role: Receivables Management Permission: Create Cutomers SOD Conflict PSFT EBS
  • 30. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal30 Interpreting Access Conflicts  User Role Permission List  Menu  Panel Component  Page Definition Finding the Right Path to Resolution U R M C D L Remove Menu Path Conflicts
  • 31. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal31  Identify the changes to be made  Click to create a change management work order  Review impact of changes  Create change request work order for System Administrator Know the Impact Before Committing Changes to the ERP Simulate Changes
  • 32. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal32 The FulcrumWay Experience
  • 33. Advanced Access and User Security for EBS and Oracle Fusion Applications Brian Amato, CPA, CISA Client Service Director - FulcrumWay
  • 34. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal34 Agenda  Objectives, Drivers, Scope  Implementation Approach  Achievements and Benefits  Lessons learned  GRC Extensibility
  • 35. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal35 Objectives, Drivers, Scope  Upgrade 8.6.3 to 8.6.4  Analyze SOD risks for EBS Financials and PSFT HR and Payroll  Define conditions to remove false positives  Implement new security model
  • 36. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal36 Implementation Approach  Risk-Based Approach  Used Oracle’s seeded content  Understand changes from 8.6.3 to 8.6.4
  • 37. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal37 Assess Risk Detect Violations Analyze Issues Remediate Issues Implement Corrective Actions Monitor Application Environment Scope Application Controls Sample ERP Data Manage Exceptions Setup Preventive Controls IT/Business Control Teams Application Controls Manager Application Security Administrator Application Controls Manager Establish Test Environment FulcrumWay™ Application Controls Management Best Practices
  • 38. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal38 Oracle Seeded Content Human Resources User Access Model Names Maintain Employees & Modify Employee Salary Maintain Employees & Process Payroll Modify Employee Position & Process Payroll Modify Employee Position & Maintain Employees Modify Employee Position & Modify Employee Salary Process Payroll & Modify Employee Salary
  • 39. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal39 New Features in 8.6.4  User Experience  New Content  Relationship Assignments  Improved Search and Detection Engine  Setup and Administration  Performance Optimization  New Security Model
  • 40. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal40 Achievements and Benefits  Able to secure EBS Financial data from HR/Payroll data!  Running Single Instance of AACG for EBS Financials and PeopleSoft HR/Payroll  Lower costs of compliance  Lower costs IT burden and increased agility
  • 41. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal41 Lessons Learned  Hardware/Software Certification Matrix  PeopleSoft Security Model  AACG Security Model
  • 42. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal42 Role Permission List Menu Component Page Definition Component Page Definition Access Hierarchy – PeopleSoft Access Points Evaluate User Access • Test by User Profile • Test by Page User Profile
  • 43. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal43 Access Hierarchy – Oracle EBS Role Responsibility Menu Sub - Menu Function Function Access Points
  • 44. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal44 8.6.4 Security Model
  • 45. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal45 8.6.4 Security Model Security Components
  • 46. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal46 8.6.4 Security Model  Leveraging Perspectives to Plan Design AACG Security, Incident Management  Examples of Perspectives aid in the definition of Data Roles  Perspective can span multiple ERP instances, types (PS, EBS)  A Perspective gets created for each datasource  Perspectives can define which users have security to AACG Controls and Incidents
  • 47. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal47 GRC Extensibility  AACG with EBS and PeopleSoft
  • 48. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal48 The Extensibility of Oracle Advanced Controls
  • 49. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal49 Pre-Built Integrations Custom or Legacy Applications Continuous SOD Controls Monitoring Pre-built Extensible Partner Pre-built CUSTOMER CARE & BILLING
  • 50. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal50 What is Extension?  Work done by end users and their developers to add new abilities to GRCC WHY IS IT VALUABLE?  Gives you the ability to extend standard functionality to meet your unique needs WHAT PRODUCT DOES IT SPAN?  EGRCM and EGRCC 8.x in a Single Platform Ways to Extend GRCC Expertise Create a new… End user Model Control Incident Developer Business object Connector Pattern API/Web Service
  • 51. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal51 ConnectorsControls General Domain Knowledge (Financial, Medical, SCM, etc.) Business Application System Experts (EBS, PSFT, etc.) Skill Set Required Application Engineer or Software Engineer Actuarial Skills Specific Domain Knowledge (P2P, GL, T&E, etc.) Business Objects Advanced Extensions Required Preferred Not Required DBA's, ETL Users or Analytic App. Builders • Allows us to build an internal factory for building meta-data cost-effectively • Provides the platform for a future ecosystem of meta-data • SDLC: Minimizing risk in execution through reduction of Knowledge Diffusion Risk Management Clearly Separated Skill Sets
  • 52. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal52 High-Level Platform Extensibility Points • Getting Data into GRC for Analysis • OWL (Ontology Web Language) – an XML language • Web Services • Custom Objects • Advanced extensions – Java • Extending the Workflows & Reporting • Both RESTful & SOAP Web Services available • SOA Integration out of the box • Data Analytics for Custom Reporting and Dashboards • Physical and Logical Security that follows the GRC Security Model
  • 53. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal53 Focus – GRC Controls Extensibility • Takes a picture of various aspects of your system • Authorization model • Transaction model • Others • Then, it searches for exceptions (violations) • Controls are the criteria the system uses to search • Points of Extensibility: • Different ways by which it searches • Different data sources through which it searches • Different ways it can provide the results (web services, etc.) • Provides workflows for remediation of the exceptions
  • 54. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal54 When do you need extensibility?  Connecting to a custom application or COTS/ERP For which there exists no pre-built connector  Custom data or behavior that needs to be added to application(s) that aren’t supported out of the box (PSFT, EBS, etc.)  Adding custom reports to the system – Data Analytics data-mart provides an open analytic schema for all discovered violations and other data for custom reports – Robust security model for the analytic data-marts  Besides extensibility, a core feature of the product is custom objects – you can import, directly into the user interface of the application, data through a spreadsheet format (Microsoft Excel).
  • 55. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal55 Examples of Extensibility Extensibility Point Use-Case GRC Web Services User Provisioning Requests (OIM, Fusion, etc.) using GRC API’s for near-real-time checks to see if a user should be provisioned a given set of roles. GRC Connectors UCM Connector allowing expense receipts of hotel folios, etc. be analyzed using the GRC Text Analysis and reasoning engine GRC Connectors Connecting to Health-Care applications via their native protocols or HL7 to find Health-Care fraud and/or waste. Workflow Extensibility EGRCM and EGRCC SOA (SOAP), REST, and BPEL Extensibility Data Analytics Custom Reports and Analytics
  • 56. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal56 GRC Data Analytics  GRC Transactional Schema is CLOSED. – You may not access it. GRC Data Analytics is a way for you to extract data to build your own reports and analytics  GRC Data Analytic Schema Includes: – Summarized data in a properly normalized format for reporting (fact tables, dimensions, and other normalized forms – all tuned for the purposes of reporting and analytic dashboards) – Full physical and logical security: GRC Users and Roles become Database Users and Views allowing proper mirroring of data-level security in the application – Populated on-demand or on scheduled bases – Will include data for both EGRCC and EGRCM
  • 57. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal57 Conclusion
  • 58. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal58 “ …only two years after the implementation…,the external auditor relies 100 percent on Oracle GRC to assess security segregation of duties at the client.” - PwC Impact of Oracle Advanced Controls PwC Case Study Addressed material weakness resulting from security and compliance issues Inappropriate access being granted Access granted without approval Access not reviewed Access not approved in timely manner Source : PwC Whitepaper : Optimizing ERP Projects with GRC’s Advanced Financial Controls
  • 59. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal59 ?’s
  • 60. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal60 @OracleAdvCntrls Oracle GRC Advanced Controls Join Our Linkedin Group Follow us on Twitter
  • 61. Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Confidential – Oracle Internal61 The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.