Showing posts with label Principle of dual control. Show all posts
Showing posts with label Principle of dual control. Show all posts

Security Controlling System


  • Ø  Single Control
  • Ø Dual Control
  • Ø Triplet Control 
Principle of Single Control 
  • User administration , Role administration and Profile generation will be performed by a single team.
Principle of dual control  
  • §The Authorization data and profile administrator creates roles, selects transactions and maintains the authorization data. He/she also generates the profile for the roles. But he/she shouldn’t maintain users.
  • § The user administrator assigns the role to a user. But he/she shouldn’t change the data for authorizations and shouldn’t generate profiles. 
 Principle of triplet control
  • §The authorization data administrator creates roles, selects transactions and maintain the authorization data. He or she cant generate the profile and also may not change the users.
  • §
  • § The authorization profile administrator generates the profile (exception profiles containing authorization objects beginning with S_USER*). He or she may not change users, change the data for roles.
  • §
  • § The User administrator assigns roles to the user. He or she may not change the data for roles , nor change or generate profiles.
 
For more information visit www.keylabstraining.com


6 comments:
Labels: , , ,

Segregation of Duties(SOD)


 
Divide  the responsibility among the different individuals, which can prevent potential fraud in an organization. SOD improves the system security or you can say data security. But on the other hand it increases the cost of the organization.

But for a small organization it is not always possible to implement SOD completely. But it should follow the organization security policies. But The level of security is very low.

  • §The concept of Segregation of Duty
  • § The  SOD in Role/ User Administration
  • § Principle of Dual Control
  • § Principle of Triplet Control.
    • §Principle of dual control
    • § User Administration
    • § Authorization maintenance and generation
    • §
    • §Principle of treble control
    • § User Administration
    • § Authorization maintenance
    • § Authorization generation
    §
     

        SOD is primary internal control to prevent the risk, identify problem and take corrective action.
        Achieved by assuring no single individual has control over all phases of business transactions.
        Covers 4 general categories of duties:
         Authorization
         Custody
         Record Keeping
         Reconciliation 

For more information visit www.keylabstraining.com


8 comments:
Labels: , , ,
Subscribe to: Posts (Atom)