PROFILETAILOR SEGREGATION OF DUTIES

Identify & Solve Conflicts Before They Occur

GRC Compliance: Better to Play Defense or Offense?

5 Astonishing Truths about GRC in SAP Environments

Take Control Over Segregation of Duties

Take Control Over Segregation of Duties

Segregation of Duties (SoD) is a common requirement from auditors, which must be met.  The ProfileTailor SoD module is a single control point to enforce segregation of duties rules on multiple platforms.  It helps with eliminating Segregation of Duties conflicts while complying with SOX regulations easily and quickly, using our unique behavior-based user profiling methods.

When you start an SoD project, you start with rules. The rules define what combinations of activities will conflict with SOX regulations. Only after a sound rule definition can you proceed to find the violations to these rules.

You will be able to identify SoD violations by authorization roles or by specific user. If a violation is pre-approved, you can create a remediation (mitigation) quickly so this violation will not appear again in the reports.

 

In ProfileTailor Segregation of Duties, you will be able to :

Easily define SoD rules with only a browser, or an uploaded Excel document

Manage rules so you can separate them to groups, and activate or deactivate them together

Start with built in best-practices, so you don’t have to start from scratch

Quickly Identify Violations to SoD

Identify Violations Before They Happen

ProfileTailor™ SoD enables the identification of violations of Segregation of Duties (SoD) combinations on both the static level of granting authorizations for users – and on the dynamic level, as a compensating control. A “What If” simulator allows a testing platform for potential violations. The system monitors actual real-time behavior usage for every SAP® user – and sends alerts about any unusual or unacceptable activity, including risk severity level.

ProfileTailor™ SoD uniquely builds a dynamic user profile for each user, so it provides information about what a user can or cannot do (authorizations) and of actual usage of the system on a day-to-day basis. Using this information the system also alerts to any abnormal user behavior.

Quickly Identify Violations to SOD

Generates many different types of reports and matrices, all of which serve to quickly identify violations.

Multi-System Support

Allow auditors and security managers to implement one SoD ruleset and enforce it on multiple applications simultaneously.

Rich Ruleset, Fully Customizable

Includes various methods to create and maintain SoD rulesets easily and effectively, in order to maximize the level of control.

Multiple Ways to Utilize

An on-premise solution or as cloud/SAAS installation as a continuous inspection solution. Also can be used in a single inspection mode.

Key Benefits

Single View Point

Enforce SoD ruleset over multiple applications from a single point

Robust Reporting

Get scheduled reports on violations and also real time alerts when risks occur

Quick Validation

Quickly validate risks against real user activity

Customizable Rules

Maintain, upload and download rulesets in multiple schemas to fit different scenarios

Comprehensive Reporting

Automation of in-house and outsourced auditing tasks through ProfileTailor SoD saves an average of 30% of external auditing hours, including SAP audits, SoD/SOX projects and pre-defined risk reports.

Reports on all roles containing a SoD violation

Reports on all users that have a combination of roles, activities, or objects that cause SoD violations

Reports on all users that have actually performed activities that violate SoD combination or rules

Maintaining A Clean Environment

How do you keep the situation clean and avoid seeing new violations in each audit report? To keep it clean, ProfileTailor  includes a set of workflow processes and features that can be used to:

Prevent a New Situation of Violating SoD

Using pre-defined workflow process of requesting authorizations. This process of approvals includes a built-in SoD violation check, and if it’s found that the requested authorization violates any of the SoD rules, it will be automatically redirected to the SOX manager, who can take further action.

Conduct a Periodic Process of Access Certification

As part of the SOX regulations, managers need to recertify their employees’ authorizations on a periodic basis. This can be done quickly with the pre-configured process for authorization review, included in ProfileTailor. Managers just love the simplicity of the process and the lack of hassle.

Allow Emergency Access to Production

Use a comprehensive workflow process to allow power-access to production environments by IT people. ProfileTailor includes a uniquely detailed process, that complies with GRC regulations, allows granting timely access, while tracking the performed activities.

Rapid Development Immediate Results

ProfileTailor is design for rapid deployment so you can receive immediate results.  We are able to make this possible due to our .NET based software that resides on an external server outside of SAP, while most of our competitors are ABAP based and installed inside SAP. 

ProfileTailor can be installed in just days utilizing standard RFC connections and does not make any changes to your SAP systems.  

RoleAdvisor

RoleSplitter

ConflictResolver

SoD Simulator

ActivityRemover

RoleReplacer

Additional Tools For More Control

With our built-in tools, you will be able to take control and maintain a violation-free environment quickly and effectively.  

Monitoring non-SAP Applications

ProfileTailor Dynamics has strong capabilities in monitoring other ERP systems, enforcing policies and tracking usage of authorizations. Customers with the following systems use Xpandion’s products for monitoring.

Oracle E-Business Suite

Microsoft Active Directory

Microsoft Exchange

Microsoft Dynamics ERP

Microsoft Sharepoint

Microsoft Navision

Share Folders

AS/400 iSeries Systems

Priority ERP

Infor/Lawson M3 ERP

Salesforce

Home-Grown Applications

Identify & Solve Conflicts Before They Occur

Take ProfileTailor Segregation of Duties For a Test Drive

Close Menu