SlideShare a Scribd company logo

Stay Two Steps Ahead of Your Auditor

eprentise
eprentise

Do you want to discover the mysteries behind your audit and help your auditors find what they are looking for? Join E-Business Suite Security and Controls expert Jeffrey T. Hare, CPA CISA CIA, from ERP Risk Advisors, to hear the latest about what auditors are scrutinizing. Two of the topics covered will be Sensitive Administration Page and profile options. This webinar will help you stay two steps ahead of your audit firm! Learning Objectives: After completion of this program you will be able to: Objective 1: Discover the mysteries behind your audit, and help your auditor find what he or she is looking for. Objective 2: Understand the impact of profile options on EBS security and controls. Objective 3: Learn about how the Sensitive Administration Page manages segregation of duties (SoD) in E-Business Suite. View the full webinar recording: http://www.eprentise.com/event/stay-two-steps-ahead-of-your-auditor/ Website: www.eprentise.com Twitter: @eprentise - twitter.com/eprentise LinkedIn: linkedin.com/company/eprentise Google+: https://plus.google.com/+eprentise Facebook: https://www.facebook.com/eprentise Ensure your data is Complete, Consistent, and Correct by using eprentise software to transform your Oracle® E-Business Suite.

Technology
1 of 28
Download to read offline
© 2014 eprentise. 2013 All rights reserved. Jeffrey T. Hare, CPA CISA CIA ERP Risk Advisors jhare@erpra.net Stay Two Steps Ahead of Your Auditor
© 2014 eprentise. All rights reserved. 2 Webinar Mechanics • Submit text questions. • Q&A addressed at the end of the session. Answers will be posted within two weeks on our new LinkedIn Group, EBS Answers: http://www.linkedin.com/groups/EBS- Answers-4683349/about • Everyone will receive an email within 24 hours with a link to view a recorded version of today’s session. • Polling questions will be presented during the session. If you want CPE credit for this webinar, you must answer all of the polling questions. • We will be sharing the responses from the poll questions, as well as webinar highlights, on Twitter – be sure to follow us (@eprentise)! | 2
© 2014 eprentise. All rights reserved. 3 Objectives Objective 1: Discover the mysteries behind your audit, and help your auditor find what he or she is looking for. Objective 2: Understand the impact of profile options on EBS security and controls. Objective 3: Learn about risks related to “Sensitive Administration Page” in EBS and what controls need to be put in place. Objective 4: Hear about the most significant change management challenges facing organizations: configuration change management. | 3
© 2014 eprentise. 2013 All rights reserved. eprentise Can… …So Our Customers Can: Consolidate Multiple EBS Instances Change Underlying Structures and Configurations  Chart of Accounts, Other Flexfields  Inventory Organizations  Operating Groups, Legal Entities, Ledgers  Calendars  Costing Methods Resolve Duplicates, Change Sequences, IDs Separate Data : Transformation Software for E-Business Suite Reduce Operating Costs and Increase Efficiencies  Shared Services  Data Centers Adapt to Change  Align with New Business Initiatives  Mergers, Acquisitions, Divestitures  Pattern-Based Strategies • Make ERP an Adaptive Technology Avoid a Reimplementation Reduce Complexity and Control Risk Improve Business Continuity, Service Quality and Compliance Establish Data Quality Standards and a Single Source of Truth Company Overview: Incorporated 2007  Helene Abrams, CEO | 4
© 2014 eprentise. 2013 All rights reserved. ERP Risk Advisors ERP Risk Advisors is a leading provider of Risk Advisory services for organizations using Oracle Applications. We provide consulting and training services related to compliance, security, risk management, and controls. We also assist organizations in implementing GRC-related software from industry-leading companies. | 5
© 2014 eprentise. 2013 All rights reserved. Today’s Speaker: Jeffrey T. Hare, CPA CISA CIA CEO of ERP Risk Advisors Background includes public accounting (including Big 4 experience), industry, and Oracle Applications consulting experience Has been working in the Oracle Applications space since 1998 with implementation, upgrade, and support experience First solo book project "Oracle E-Business Suite Controls: Application Security Best Practices" was released in 2009; significant update and expansion of the book coming later in 2014 – will be called “Oracle E- Business Suite Controls: Foundational Principles” | 6
© 2014 eprentise. 2013 All rights reserved. Hot Topics in Internal Controls and Security Profile options – what are they and why should you be concerned? Forms that allow SQL Injection and Operating Scripts to be executed from the applications. Configuration Change Management policy and procedures | 7
© 2014 eprentise. 2013 All rights reserved. What are Profile Options? Examples Utilities: Diagnostics FND: Diagnostics GL: Journal Review Required FND: Personalization Region Link Enabled Sign-On:Notification | 8
© 2014 eprentise. 2013 All rights reserved. How Profile Options are Set System Profile Values | 9
© 2014 eprentise. 2013 All rights reserved. How Profile Options are Set (Continued) Personal Profile Values | 10
© 2014 eprentise. 2013 All rights reserved. How Profile Options are Defined - Examples | 11
© 2014 eprentise. 2013 All rights reserved. How Profile Options are Defined - Examples | 12
© 2014 eprentise. 2013 All rights reserved. How Profile Options are Defined - Examples | 13
© 2014 eprentise. 2013 All rights reserved. How Profile Options are Defined - Examples | 14
© 2014 eprentise. 2013 All rights reserved. Best Practices for Profile Options: Risk Assessment related to profile option values Should they be set in Production? When should they be set? At what level – Site, Application, Responsibility, User Should they go through the change management process? Who should approve them? Review all profile options that are set after the risk assessment Update the risk assessment for new profile options that need to be set Audit all changes to profile options to ensure compliance with policy and risk assessment | 15
© 2014 eprentise. 2013 All rights reserved. What are SQL Forms? See 189367.1 – 11i See 403537.1 – R12 See 1334930.1 – R12 Forms that allow SQL statements to be executed from within them and, in some cases, operating system scripts to be run as well. Oracle Recommendations from prior version of 189367.1 / 403537.1:  LIMIT ACCESS TO FORMS ALLOWING SQL ENTRY  To improve flexibility, some forms allow users to enter SQL statements. Unfortunately, this feature may be abused. “Appendix B: Security Setup Forms That Accept SQL Statement” on page 49 contains a list of Forms that allow the user to edit code, add code or otherwise affect executable code. Restrict access to these forms by assigning the responsibility to a small group of users. Consider auditing the database tables listed in the appendix. | 16
© 2014 eprentise. 2013 All rights reserved. Versions of Oracle’s ‘Best Practice’ Documents: Version: 3.0.5 July 2007 – MOS Note 189367.1 – Best Practices for Securing Oracle E-Business Suite | 17
© 2014 eprentise. 2013 All rights reserved. Versions of Oracle’s ‘Best Practice’ Documents: Document 403537.1 – name changes to Secure Configuration Guide for Oracle E-Business Suite | 18 Guidance related to monitoring is taken out:
© 2014 eprentise. 2013 All rights reserved. Examples of SQL Define Alerts Collection Plans (Quality module) BOM Deletion Statements | 19
© 2014 eprentise. 2013 All rights reserved. Examples of Ways to Commit Fraud | 20
© 2014 eprentise. 2013 All rights reserved. Another Example: | 21
© 2014 eprentise. 2013 All rights reserved. Another Example (Continued): | 22
© 2014 eprentise. 2013 All rights reserved. List of “Sensitive Administration Forms” from 1334930.1 Define Alert, Concurrent Programs (System Administrator Mode), Concurrent Program Executables, Profile Options, Applications, Data Groups, ORACLE Usernames, Attribute Mapping Details, Define Data Stream, Custom Stream Advanced Setup, Audit Statements, Define Dynamic Resource Groups, Business Rule Workbench, Validation Templates, Attribute Mapping, Attribute Mapping, Objects Meta-data, Spreadtable Metadata Administration, SpreadTable Diagnostics, JTFGANTT, Define WMS Rules, Create Pricing Formulas, New Attribute Mapping, Workflow Process Configuration Framework, Workflow Activity Approval , Configuration Framework, Approvals Management, PL/SQL tester, Write Formula, Define Function, Create QuickPaint Inquiry, Define Assignment Set, Dynamic Trigger Maintenance, Define Security Profile, Descriptive Flexfield Segments, Flexfield Value Sets, Fast Formula Define, Collection Plans, AutoAccounting Rules, Define Query Objects, Delete Constraints, Delete Constraints: Update, Document Entities, Printer Drivers, Collection Elements, Create Custom Sql Page, Data Source LOV Definition Page, Create Parameterized Query Template, Create page for Profiles, Search page for Profiles, Update page for Profiles, Define page for Profile Values, Function Search, SSWA Maintain Objects, Help Utility, Object Details, IBU_A_PZ_FN, IBU_A_UG_FN, IEU_PROVIDER_SITE, JTF_FM_ALLQUERY, JTF_FM_VIEWDOCS, Create Test, Maintain SCORM Adapter Properties, Maintain Learning Object Properties, Define Custom SQL Fields Several we have identified that aren’t even in the Oracle MOS Note: AutoAccounting Rules, Define Query Objects, Delete Constraints, Delete Constraints: Update, Define Custom SQL Fields | 23
© 2014 eprentise. 2013 All rights reserved. Best Practices Related to SQL Forms Access should be tightly restricted to just the users management approves having access – suggest SaaS service to find out who has access to all SQL forms All activity in the forms should go through your change management process All code going through the forms should be subject to a peer review before it is entered All activity within the forms should be audited using a trigger or log-based solution All activity should be reconciled back to approved activity For unauthorized changes, appropriate actions must be taken to plug the holes | 24
© 2014 eprentise. 2013 All rights reserved. Configuration Change Management ERP Systems – dormant code that is enabled through configurations Impact of enabling functionality is same as ‘development’ activity Do your policies and procedures acknowledge risks of changes to configurations having the impact of code change? Have you performed a risk assessment to identify which configurations have the impact of code change? Has your security been designed taking into account Are you monitoring changes to configurations similar to ways you are/ should be monitoring changes made through SDLC/object oriented development | 25
© 2014 eprentise. 2013 All rights reserved. Types of Changes Subject to Change Management Development / SDLC Patching Security Configurations | 26
© 2014 eprentise. 2013 All rights reserved. Questions? | 27
© 2014 eprentise. 2013 All rights reserved. Thank You! - One World, One System, A Single Source of Truth - Jeffrey T. Hare, CPA CISA CIA ERP Risk Advisors | www.erpra.net jhare@erpra.net | 970.324.1450 Answers from this session will be posted within two weeks on the LinkedIn Group, EBS Answers: http://www.linkedin.com/groups/EBS-Answers-4683349/about | 28

Recommended

Top Seven Steps for Optimizing Cross-Validation Rules in General Ledger
Top Seven Steps for Optimizing Cross-Validation Rules in General LedgerTop Seven Steps for Optimizing Cross-Validation Rules in General Ledger
Top Seven Steps for Optimizing Cross-Validation Rules in General Ledgereprentise
 
Transform Financial Reporting Using Master Row Sets in Oracle E-Business Suite
Transform Financial Reporting Using Master Row Sets in Oracle E-Business SuiteTransform Financial Reporting Using Master Row Sets in Oracle E-Business Suite
Transform Financial Reporting Using Master Row Sets in Oracle E-Business Suiteeprentise
 
Top Seven Steps for Optimizing Cross-Validation Rules in General Ledger
Top Seven Steps for Optimizing Cross-Validation Rules in General LedgerTop Seven Steps for Optimizing Cross-Validation Rules in General Ledger
Top Seven Steps for Optimizing Cross-Validation Rules in General Ledgereprentise
 
E-Business Suite Release 12 Payables Upgrade: Like for Like and Then Some
E-Business Suite Release 12 Payables Upgrade: Like for Like and Then SomeE-Business Suite Release 12 Payables Upgrade: Like for Like and Then Some
E-Business Suite Release 12 Payables Upgrade: Like for Like and Then Someeprentise
 
Who Does What, When, and How for a Divestiture?
Who Does What, When, and How for a Divestiture?Who Does What, When, and How for a Divestiture?
Who Does What, When, and How for a Divestiture?eprentise
 
Who Does What, When, and How for a Divestiture?
Who Does What, When, and How for a Divestiture?Who Does What, When, and How for a Divestiture?
Who Does What, When, and How for a Divestiture?eprentise
 
You Gain Some, You Lose Some: Best Practices for Ledger Structures During Fun...
You Gain Some, You Lose Some: Best Practices for Ledger Structures During Fun...You Gain Some, You Lose Some: Best Practices for Ledger Structures During Fun...
You Gain Some, You Lose Some: Best Practices for Ledger Structures During Fun...eprentise
 
Farewell Oracle® EBS - A Smooth Exit
Farewell Oracle® EBS - A Smooth ExitFarewell Oracle® EBS - A Smooth Exit
Farewell Oracle® EBS - A Smooth Exiteprentise
 

Recommended

Top Seven Steps for Optimizing Cross-Validation Rules in General Ledger
Top Seven Steps for Optimizing Cross-Validation Rules in General LedgerTop Seven Steps for Optimizing Cross-Validation Rules in General Ledger
Top Seven Steps for Optimizing Cross-Validation Rules in General Ledgereprentise
 
Transform Financial Reporting Using Master Row Sets in Oracle E-Business Suite
Transform Financial Reporting Using Master Row Sets in Oracle E-Business SuiteTransform Financial Reporting Using Master Row Sets in Oracle E-Business Suite
Transform Financial Reporting Using Master Row Sets in Oracle E-Business Suiteeprentise
 
Top Seven Steps for Optimizing Cross-Validation Rules in General Ledger
Top Seven Steps for Optimizing Cross-Validation Rules in General LedgerTop Seven Steps for Optimizing Cross-Validation Rules in General Ledger
Top Seven Steps for Optimizing Cross-Validation Rules in General Ledgereprentise
 
E-Business Suite Release 12 Payables Upgrade: Like for Like and Then Some
E-Business Suite Release 12 Payables Upgrade: Like for Like and Then SomeE-Business Suite Release 12 Payables Upgrade: Like for Like and Then Some
E-Business Suite Release 12 Payables Upgrade: Like for Like and Then Someeprentise
 
Who Does What, When, and How for a Divestiture?
Who Does What, When, and How for a Divestiture?Who Does What, When, and How for a Divestiture?
Who Does What, When, and How for a Divestiture?eprentise
 
Who Does What, When, and How for a Divestiture?
Who Does What, When, and How for a Divestiture?Who Does What, When, and How for a Divestiture?
Who Does What, When, and How for a Divestiture?eprentise
 
You Gain Some, You Lose Some: Best Practices for Ledger Structures During Fun...
You Gain Some, You Lose Some: Best Practices for Ledger Structures During Fun...You Gain Some, You Lose Some: Best Practices for Ledger Structures During Fun...
You Gain Some, You Lose Some: Best Practices for Ledger Structures During Fun...eprentise
 
Farewell Oracle® EBS - A Smooth Exit
Farewell Oracle® EBS - A Smooth ExitFarewell Oracle® EBS - A Smooth Exit
Farewell Oracle® EBS - A Smooth Exiteprentise
 
Designing a Chart of Accounts for a Global Company Going to Oracle E-Business...
Designing a Chart of Accounts for a Global Company Going to Oracle E-Business...Designing a Chart of Accounts for a Global Company Going to Oracle E-Business...
Designing a Chart of Accounts for a Global Company Going to Oracle E-Business...eprentise
 
Cross-Validation Rules: Tips to Optimize your GL
Cross-Validation Rules: Tips to Optimize your GLCross-Validation Rules: Tips to Optimize your GL
Cross-Validation Rules: Tips to Optimize your GLeprentise
 
Oracle R12 Financials New Features Overview
Oracle R12 Financials New Features OverviewOracle R12 Financials New Features Overview
Oracle R12 Financials New Features OverviewiWare Logic Technologies Pvt. Ltd.
 
E-Business Suite Customization Impact Assessment
E-Business Suite Customization Impact AssessmentE-Business Suite Customization Impact Assessment
E-Business Suite Customization Impact Assessmenteprentise
 
152633980 accrual-reconciliation-process-and-troubleshooting-in-r12-pdf
152633980 accrual-reconciliation-process-and-troubleshooting-in-r12-pdf152633980 accrual-reconciliation-process-and-troubleshooting-in-r12-pdf
152633980 accrual-reconciliation-process-and-troubleshooting-in-r12-pdfnarane1976
 
Designing a Chart of Accounts and Enterprise Structure in Oracle Fusion ERP C...
Designing a Chart of Accounts and Enterprise Structure in Oracle Fusion ERP C...Designing a Chart of Accounts and Enterprise Structure in Oracle Fusion ERP C...
Designing a Chart of Accounts and Enterprise Structure in Oracle Fusion ERP C...Prithis Das, PMP, OCS ☁️
 
The Search for the Single Source of Truth - Eliminating a Multi-Instance Envi...
The Search for the Single Source of Truth - Eliminating a Multi-Instance Envi...The Search for the Single Source of Truth - Eliminating a Multi-Instance Envi...
The Search for the Single Source of Truth - Eliminating a Multi-Instance Envi...eprentise
 
Secondary Ledgers - The Power of Adjustment Ledgers for Reporting and Compliance
Secondary Ledgers - The Power of Adjustment Ledgers for Reporting and ComplianceSecondary Ledgers - The Power of Adjustment Ledgers for Reporting and Compliance
Secondary Ledgers - The Power of Adjustment Ledgers for Reporting and Complianceeprentise
 
How Arbys Restructured their GL Chart of Accounts
How Arbys Restructured their GL Chart of AccountsHow Arbys Restructured their GL Chart of Accounts
How Arbys Restructured their GL Chart of Accountseprentise
 
Maximize a 24 X 7 Shared Services Global Operation With Oracle E-Business Suite
Maximize a 24 X 7 Shared Services Global Operation With Oracle E-Business SuiteMaximize a 24 X 7 Shared Services Global Operation With Oracle E-Business Suite
Maximize a 24 X 7 Shared Services Global Operation With Oracle E-Business Suiteeprentise
 
Release 12-financials-best-practices1227
Release 12-financials-best-practices1227Release 12-financials-best-practices1227
Release 12-financials-best-practices1227Berry Clemens
 
Oracle Applications - R12 Approvals Management Engine - AME Training
Oracle Applications - R12 Approvals Management Engine - AME TrainingOracle Applications - R12 Approvals Management Engine - AME Training
Oracle Applications - R12 Approvals Management Engine - AME TrainingDharmalingam Kandampalayam Shanmugam
 
Oracle Fusion Applications Accounts Payables
Oracle Fusion Applications Accounts PayablesOracle Fusion Applications Accounts Payables
Oracle Fusion Applications Accounts PayablesBerry Clemens
 
New features in oracle fusion financial accounts receivables and account paya...
New features in oracle fusion financial accounts receivables and account paya...New features in oracle fusion financial accounts receivables and account paya...
New features in oracle fusion financial accounts receivables and account paya...Jade Global
 
Implementing Fusion Cloud Procurement a Real Life Case Study
Implementing Fusion Cloud Procurement a Real Life Case StudyImplementing Fusion Cloud Procurement a Real Life Case Study
Implementing Fusion Cloud Procurement a Real Life Case StudyJade Global
 
R12 New Features In Order Management
R12 New Features In Order ManagementR12 New Features In Order Management
R12 New Features In Order Managementravisagaram
 
Fusion applications gl and ar suresh c-mishra
Fusion applications gl and ar suresh c-mishraFusion applications gl and ar suresh c-mishra
Fusion applications gl and ar suresh c-mishraSuresh Mishra
 
Ame how to diagnose issues with the default approver list in purchasing when ...
Ame how to diagnose issues with the default approver list in purchasing when ...Ame how to diagnose issues with the default approver list in purchasing when ...
Ame how to diagnose issues with the default approver list in purchasing when ...Abdul Rahman Fouad Thabit
 
Oracle Fusion Financials Overview
Oracle Fusion Financials OverviewOracle Fusion Financials Overview
Oracle Fusion Financials OverviewBerry Clemens
 
Fusion apps receivables
Fusion apps receivablesFusion apps receivables
Fusion apps receivablesHasan Shabbir
 
Going to R12? The Upgrading vs Reimplementing Decision
Going to R12? The Upgrading vs Reimplementing DecisionGoing to R12? The Upgrading vs Reimplementing Decision
Going to R12? The Upgrading vs Reimplementing Decisioneprentise
 
An IT Perspective of an Acquisition- The Top Six Must-Do List Webinar
An IT Perspective of an Acquisition- The Top Six Must-Do List WebinarAn IT Perspective of an Acquisition- The Top Six Must-Do List Webinar
An IT Perspective of an Acquisition- The Top Six Must-Do List Webinareprentise
 

More Related Content

What's hot

Designing a Chart of Accounts for a Global Company Going to Oracle E-Business...
Designing a Chart of Accounts for a Global Company Going to Oracle E-Business...Designing a Chart of Accounts for a Global Company Going to Oracle E-Business...
Designing a Chart of Accounts for a Global Company Going to Oracle E-Business...eprentise
 
Cross-Validation Rules: Tips to Optimize your GL
Cross-Validation Rules: Tips to Optimize your GLCross-Validation Rules: Tips to Optimize your GL
Cross-Validation Rules: Tips to Optimize your GLeprentise
 
E-Business Suite Customization Impact Assessment
E-Business Suite Customization Impact AssessmentE-Business Suite Customization Impact Assessment
E-Business Suite Customization Impact Assessmenteprentise
 
152633980 accrual-reconciliation-process-and-troubleshooting-in-r12-pdf
152633980 accrual-reconciliation-process-and-troubleshooting-in-r12-pdf152633980 accrual-reconciliation-process-and-troubleshooting-in-r12-pdf
152633980 accrual-reconciliation-process-and-troubleshooting-in-r12-pdfnarane1976
 
Designing a Chart of Accounts and Enterprise Structure in Oracle Fusion ERP C...
Designing a Chart of Accounts and Enterprise Structure in Oracle Fusion ERP C...Designing a Chart of Accounts and Enterprise Structure in Oracle Fusion ERP C...
Designing a Chart of Accounts and Enterprise Structure in Oracle Fusion ERP C...Prithis Das, PMP, OCS ☁️
 
The Search for the Single Source of Truth - Eliminating a Multi-Instance Envi...
The Search for the Single Source of Truth - Eliminating a Multi-Instance Envi...The Search for the Single Source of Truth - Eliminating a Multi-Instance Envi...
The Search for the Single Source of Truth - Eliminating a Multi-Instance Envi...eprentise
 
Secondary Ledgers - The Power of Adjustment Ledgers for Reporting and Compliance
Secondary Ledgers - The Power of Adjustment Ledgers for Reporting and ComplianceSecondary Ledgers - The Power of Adjustment Ledgers for Reporting and Compliance
Secondary Ledgers - The Power of Adjustment Ledgers for Reporting and Complianceeprentise
 
How Arbys Restructured their GL Chart of Accounts
How Arbys Restructured their GL Chart of AccountsHow Arbys Restructured their GL Chart of Accounts
How Arbys Restructured their GL Chart of Accountseprentise
 
Maximize a 24 X 7 Shared Services Global Operation With Oracle E-Business Suite
Maximize a 24 X 7 Shared Services Global Operation With Oracle E-Business SuiteMaximize a 24 X 7 Shared Services Global Operation With Oracle E-Business Suite
Maximize a 24 X 7 Shared Services Global Operation With Oracle E-Business Suiteeprentise
 
Release 12-financials-best-practices1227
Release 12-financials-best-practices1227Release 12-financials-best-practices1227
Release 12-financials-best-practices1227Berry Clemens
 
Oracle Applications - R12 Approvals Management Engine - AME Training
Oracle Applications - R12 Approvals Management Engine - AME TrainingOracle Applications - R12 Approvals Management Engine - AME Training
Oracle Applications - R12 Approvals Management Engine - AME TrainingDharmalingam Kandampalayam Shanmugam
 
Oracle Fusion Applications Accounts Payables
Oracle Fusion Applications Accounts PayablesOracle Fusion Applications Accounts Payables
Oracle Fusion Applications Accounts PayablesBerry Clemens
 
New features in oracle fusion financial accounts receivables and account paya...
New features in oracle fusion financial accounts receivables and account paya...New features in oracle fusion financial accounts receivables and account paya...
New features in oracle fusion financial accounts receivables and account paya...Jade Global
 
Implementing Fusion Cloud Procurement a Real Life Case Study
Implementing Fusion Cloud Procurement a Real Life Case StudyImplementing Fusion Cloud Procurement a Real Life Case Study
Implementing Fusion Cloud Procurement a Real Life Case StudyJade Global
 
R12 New Features In Order Management
R12 New Features In Order ManagementR12 New Features In Order Management
R12 New Features In Order Managementravisagaram
 
Fusion applications gl and ar suresh c-mishra
Fusion applications gl and ar suresh c-mishraFusion applications gl and ar suresh c-mishra
Fusion applications gl and ar suresh c-mishraSuresh Mishra
 
Ame how to diagnose issues with the default approver list in purchasing when ...
Ame how to diagnose issues with the default approver list in purchasing when ...Ame how to diagnose issues with the default approver list in purchasing when ...
Ame how to diagnose issues with the default approver list in purchasing when ...Abdul Rahman Fouad Thabit
 
Oracle Fusion Financials Overview
Oracle Fusion Financials OverviewOracle Fusion Financials Overview
Oracle Fusion Financials OverviewBerry Clemens
 
Fusion apps receivables
Fusion apps receivablesFusion apps receivables
Fusion apps receivablesHasan Shabbir
 

What's hot (20)

Designing a Chart of Accounts for a Global Company Going to Oracle E-Business...
Designing a Chart of Accounts for a Global Company Going to Oracle E-Business...Designing a Chart of Accounts for a Global Company Going to Oracle E-Business...
Designing a Chart of Accounts for a Global Company Going to Oracle E-Business...
 
Cross-Validation Rules: Tips to Optimize your GL
Cross-Validation Rules: Tips to Optimize your GLCross-Validation Rules: Tips to Optimize your GL
Cross-Validation Rules: Tips to Optimize your GL
 
Oracle R12 Financials New Features Overview
Oracle R12 Financials New Features OverviewOracle R12 Financials New Features Overview
Oracle R12 Financials New Features Overview
 
E-Business Suite Customization Impact Assessment
E-Business Suite Customization Impact AssessmentE-Business Suite Customization Impact Assessment
E-Business Suite Customization Impact Assessment
 
152633980 accrual-reconciliation-process-and-troubleshooting-in-r12-pdf
152633980 accrual-reconciliation-process-and-troubleshooting-in-r12-pdf152633980 accrual-reconciliation-process-and-troubleshooting-in-r12-pdf
152633980 accrual-reconciliation-process-and-troubleshooting-in-r12-pdf
 
Designing a Chart of Accounts and Enterprise Structure in Oracle Fusion ERP C...
Designing a Chart of Accounts and Enterprise Structure in Oracle Fusion ERP C...Designing a Chart of Accounts and Enterprise Structure in Oracle Fusion ERP C...
Designing a Chart of Accounts and Enterprise Structure in Oracle Fusion ERP C...
 
The Search for the Single Source of Truth - Eliminating a Multi-Instance Envi...
The Search for the Single Source of Truth - Eliminating a Multi-Instance Envi...The Search for the Single Source of Truth - Eliminating a Multi-Instance Envi...
The Search for the Single Source of Truth - Eliminating a Multi-Instance Envi...
 
Secondary Ledgers - The Power of Adjustment Ledgers for Reporting and Compliance
Secondary Ledgers - The Power of Adjustment Ledgers for Reporting and ComplianceSecondary Ledgers - The Power of Adjustment Ledgers for Reporting and Compliance
Secondary Ledgers - The Power of Adjustment Ledgers for Reporting and Compliance
 
How Arbys Restructured their GL Chart of Accounts
How Arbys Restructured their GL Chart of AccountsHow Arbys Restructured their GL Chart of Accounts
How Arbys Restructured their GL Chart of Accounts
 
Maximize a 24 X 7 Shared Services Global Operation With Oracle E-Business Suite
Maximize a 24 X 7 Shared Services Global Operation With Oracle E-Business SuiteMaximize a 24 X 7 Shared Services Global Operation With Oracle E-Business Suite
Maximize a 24 X 7 Shared Services Global Operation With Oracle E-Business Suite
 
Release 12-financials-best-practices1227
Release 12-financials-best-practices1227Release 12-financials-best-practices1227
Release 12-financials-best-practices1227
 
Oracle Applications - R12 Approvals Management Engine - AME Training
Oracle Applications - R12 Approvals Management Engine - AME TrainingOracle Applications - R12 Approvals Management Engine - AME Training
Oracle Applications - R12 Approvals Management Engine - AME Training
 
Oracle Fusion Applications Accounts Payables
Oracle Fusion Applications Accounts PayablesOracle Fusion Applications Accounts Payables
Oracle Fusion Applications Accounts Payables
 
New features in oracle fusion financial accounts receivables and account paya...
New features in oracle fusion financial accounts receivables and account paya...New features in oracle fusion financial accounts receivables and account paya...
New features in oracle fusion financial accounts receivables and account paya...
 
Implementing Fusion Cloud Procurement a Real Life Case Study
Implementing Fusion Cloud Procurement a Real Life Case StudyImplementing Fusion Cloud Procurement a Real Life Case Study
Implementing Fusion Cloud Procurement a Real Life Case Study
 
R12 New Features In Order Management
R12 New Features In Order ManagementR12 New Features In Order Management
R12 New Features In Order Management
 
Fusion applications gl and ar suresh c-mishra
Fusion applications gl and ar suresh c-mishraFusion applications gl and ar suresh c-mishra
Fusion applications gl and ar suresh c-mishra
 
Ame how to diagnose issues with the default approver list in purchasing when ...
Ame how to diagnose issues with the default approver list in purchasing when ...Ame how to diagnose issues with the default approver list in purchasing when ...
Ame how to diagnose issues with the default approver list in purchasing when ...
 
Oracle Fusion Financials Overview
Oracle Fusion Financials OverviewOracle Fusion Financials Overview
Oracle Fusion Financials Overview
 
Fusion apps receivables
Fusion apps receivablesFusion apps receivables
Fusion apps receivables
 

Viewers also liked

Going to R12? The Upgrading vs Reimplementing Decision
Going to R12? The Upgrading vs Reimplementing DecisionGoing to R12? The Upgrading vs Reimplementing Decision
Going to R12? The Upgrading vs Reimplementing Decisioneprentise
 
An IT Perspective of an Acquisition- The Top Six Must-Do List Webinar
An IT Perspective of an Acquisition- The Top Six Must-Do List WebinarAn IT Perspective of an Acquisition- The Top Six Must-Do List Webinar
An IT Perspective of an Acquisition- The Top Six Must-Do List Webinareprentise
 
Asset Revaluation or Impairment - Understanding the Accounting for Fixed Asse...
Asset Revaluation or Impairment - Understanding the Accounting for Fixed Asse...Asset Revaluation or Impairment - Understanding the Accounting for Fixed Asse...
Asset Revaluation or Impairment - Understanding the Accounting for Fixed Asse...eprentise
 
Going From Public to Private - The Oracle E-Business Suite Challenges
Going From Public to Private - The Oracle E-Business Suite ChallengesGoing From Public to Private - The Oracle E-Business Suite Challenges
Going From Public to Private - The Oracle E-Business Suite Challengeseprentise
 
The Common Challenges of Common Practices: Tips for Effectively Moving to a S...
The Common Challenges of Common Practices: Tips for Effectively Moving to a S...The Common Challenges of Common Practices: Tips for Effectively Moving to a S...
The Common Challenges of Common Practices: Tips for Effectively Moving to a S...eprentise
 
Secondary Ledgers: The Power of Adjustment Ledgers for Reporting and Compliance
Secondary Ledgers: The Power of Adjustment Ledgers for Reporting and ComplianceSecondary Ledgers: The Power of Adjustment Ledgers for Reporting and Compliance
Secondary Ledgers: The Power of Adjustment Ledgers for Reporting and Complianceeprentise
 
Five Criteria for Designing a Chart of Accounts
Five Criteria for Designing a Chart of AccountsFive Criteria for Designing a Chart of Accounts
Five Criteria for Designing a Chart of Accountseprentise
 
Upgrading To OBIEE 12C - Key Things Your Need To Know About
Upgrading To OBIEE 12C - Key Things Your Need To Know AboutUpgrading To OBIEE 12C - Key Things Your Need To Know About
Upgrading To OBIEE 12C - Key Things Your Need To Know AboutGeraint Thomas
 

Viewers also liked (10)

Going to R12? The Upgrading vs Reimplementing Decision
Going to R12? The Upgrading vs Reimplementing DecisionGoing to R12? The Upgrading vs Reimplementing Decision
Going to R12? The Upgrading vs Reimplementing Decision
 
An IT Perspective of an Acquisition- The Top Six Must-Do List Webinar
An IT Perspective of an Acquisition- The Top Six Must-Do List WebinarAn IT Perspective of an Acquisition- The Top Six Must-Do List Webinar
An IT Perspective of an Acquisition- The Top Six Must-Do List Webinar
 
Asset Revaluation or Impairment - Understanding the Accounting for Fixed Asse...
Asset Revaluation or Impairment - Understanding the Accounting for Fixed Asse...Asset Revaluation or Impairment - Understanding the Accounting for Fixed Asse...
Asset Revaluation or Impairment - Understanding the Accounting for Fixed Asse...
 
Going From Public to Private - The Oracle E-Business Suite Challenges
Going From Public to Private - The Oracle E-Business Suite ChallengesGoing From Public to Private - The Oracle E-Business Suite Challenges
Going From Public to Private - The Oracle E-Business Suite Challenges
 
The Common Challenges of Common Practices: Tips for Effectively Moving to a S...
The Common Challenges of Common Practices: Tips for Effectively Moving to a S...The Common Challenges of Common Practices: Tips for Effectively Moving to a S...
The Common Challenges of Common Practices: Tips for Effectively Moving to a S...
 
Secondary Ledgers: The Power of Adjustment Ledgers for Reporting and Compliance
Secondary Ledgers: The Power of Adjustment Ledgers for Reporting and ComplianceSecondary Ledgers: The Power of Adjustment Ledgers for Reporting and Compliance
Secondary Ledgers: The Power of Adjustment Ledgers for Reporting and Compliance
 
Oracle EBS R11i to R12 financials
Oracle EBS R11i to R12 financialsOracle EBS R11i to R12 financials
Oracle EBS R11i to R12 financials
 
Five Criteria for Designing a Chart of Accounts
Five Criteria for Designing a Chart of AccountsFive Criteria for Designing a Chart of Accounts
Five Criteria for Designing a Chart of Accounts
 
Differences R12 Vs 11i.5.10
Differences R12 Vs 11i.5.10Differences R12 Vs 11i.5.10
Differences R12 Vs 11i.5.10
 
Upgrading To OBIEE 12C - Key Things Your Need To Know About
Upgrading To OBIEE 12C - Key Things Your Need To Know AboutUpgrading To OBIEE 12C - Key Things Your Need To Know About
Upgrading To OBIEE 12C - Key Things Your Need To Know About
 

Similar to Stay Two Steps Ahead of Your Auditor

Navigating HCM Compliance Through Managed Services Part 2
Navigating HCM Compliance Through Managed Services Part 2Navigating HCM Compliance Through Managed Services Part 2
Navigating HCM Compliance Through Managed Services Part 2Smart ERP Solutions, Inc.
 
CONIG® v1.5 Converged Information Governance
CONIG® v1.5 Converged Information GovernanceCONIG® v1.5 Converged Information Governance
CONIG® v1.5 Converged Information GovernanceYalcin Gerek
 
Instantis enterprise track configuration best practices and tips overview -...
Instantis enterprise track configuration best practices and tips overview -...Instantis enterprise track configuration best practices and tips overview -...
Instantis enterprise track configuration best practices and tips overview -...p6academy
 
Conig® v1.5 Converged Information Governance
Conig® v1.5 Converged Information GovernanceConig® v1.5 Converged Information Governance
Conig® v1.5 Converged Information GovernanceYalcin Gerek
 
Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...
Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...
Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...Oracle
 
Gourav ladha - Profile
Gourav ladha - ProfileGourav ladha - Profile
Gourav ladha - ProfileGourav Ladha
 
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & Implementations
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & ImplementationsThousands of Hours Saved and Risk Reduced for EBS Upgrades & Implementations
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & ImplementationsOracle
 
Smarter Integration Using the IBM SOA Foundation Stack: Best Practices and Le...
Smarter Integration Using the IBM SOA Foundation Stack: Best Practices and Le...Smarter Integration Using the IBM SOA Foundation Stack: Best Practices and Le...
Smarter Integration Using the IBM SOA Foundation Stack: Best Practices and Le...Prolifics
 
Con8154 controlling for multiple erp systems with oracle advanced controls
Con8154 controlling for multiple erp systems with oracle advanced controlsCon8154 controlling for multiple erp systems with oracle advanced controls
Con8154 controlling for multiple erp systems with oracle advanced controlsOracle
 
Customers talk about controlling access for multiple erp systems with oracle ...
Customers talk about controlling access for multiple erp systems with oracle ...Customers talk about controlling access for multiple erp systems with oracle ...
Customers talk about controlling access for multiple erp systems with oracle ...Oracle
 
Entitlement Hub Build, Test and Deploy
Entitlement Hub Build, Test and DeployEntitlement Hub Build, Test and Deploy
Entitlement Hub Build, Test and DeployFlexera
 
Spira Team Overview Presentation
Spira Team Overview PresentationSpira Team Overview Presentation
Spira Team Overview PresentationAdam Sandman
 
Cloud investment buyers guide
Cloud investment buyers guideCloud investment buyers guide
Cloud investment buyers guideKaizenlogcom
 
Cloud investment buyers guide
Cloud investment buyers guideCloud investment buyers guide
Cloud investment buyers guideKaizenlogcom
 
Optimizing order to-cash (e-business suite) with GRC Advanced Controls
Optimizing order to-cash (e-business suite) with GRC Advanced ControlsOptimizing order to-cash (e-business suite) with GRC Advanced Controls
Optimizing order to-cash (e-business suite) with GRC Advanced ControlsOracle
 
XsXprt, a User Access Compliance and License Management tool for SAP
XsXprt, a User Access Compliance and License Management tool for SAPXsXprt, a User Access Compliance and License Management tool for SAP
XsXprt, a User Access Compliance and License Management tool for SAPGourav Ladha
 
PureApp Presentation
PureApp PresentationPureApp Presentation
PureApp PresentationProlifics
 
Automating Security Management in PBCS!
Automating Security Management in PBCS!Automating Security Management in PBCS!
Automating Security Management in PBCS!Dayalan Punniyamoorthy
 

Similar to Stay Two Steps Ahead of Your Auditor (20)

Navigating HCM Compliance Through Managed Services Part 2
Navigating HCM Compliance Through Managed Services Part 2Navigating HCM Compliance Through Managed Services Part 2
Navigating HCM Compliance Through Managed Services Part 2
 
Kiran_CV
Kiran_CVKiran_CV
Kiran_CV
 
CONIG® v1.5 Converged Information Governance
CONIG® v1.5 Converged Information GovernanceCONIG® v1.5 Converged Information Governance
CONIG® v1.5 Converged Information Governance
 
Instantis enterprise track configuration best practices and tips overview -...
Instantis enterprise track configuration best practices and tips overview -...Instantis enterprise track configuration best practices and tips overview -...
Instantis enterprise track configuration best practices and tips overview -...
 
Conig® v1.5 Converged Information Governance
Conig® v1.5 Converged Information GovernanceConig® v1.5 Converged Information Governance
Conig® v1.5 Converged Information Governance
 
Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...
Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...
Symantec, Facebook and Navillus - a comprehensive approach to securing & moni...
 
Gourav ladha - Profile
Gourav ladha - ProfileGourav ladha - Profile
Gourav ladha - Profile
 
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & Implementations
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & ImplementationsThousands of Hours Saved and Risk Reduced for EBS Upgrades & Implementations
Thousands of Hours Saved and Risk Reduced for EBS Upgrades & Implementations
 
Smarter Integration Using the IBM SOA Foundation Stack: Best Practices and Le...
Smarter Integration Using the IBM SOA Foundation Stack: Best Practices and Le...Smarter Integration Using the IBM SOA Foundation Stack: Best Practices and Le...
Smarter Integration Using the IBM SOA Foundation Stack: Best Practices and Le...
 
Con8154 controlling for multiple erp systems with oracle advanced controls
Con8154 controlling for multiple erp systems with oracle advanced controlsCon8154 controlling for multiple erp systems with oracle advanced controls
Con8154 controlling for multiple erp systems with oracle advanced controls
 
Customers talk about controlling access for multiple erp systems with oracle ...
Customers talk about controlling access for multiple erp systems with oracle ...Customers talk about controlling access for multiple erp systems with oracle ...
Customers talk about controlling access for multiple erp systems with oracle ...
 
Entitlement Hub Build, Test and Deploy
Entitlement Hub Build, Test and DeployEntitlement Hub Build, Test and Deploy
Entitlement Hub Build, Test and Deploy
 
Abdulrasheed-UpdatedCV
Abdulrasheed-UpdatedCVAbdulrasheed-UpdatedCV
Abdulrasheed-UpdatedCV
 
Spira Team Overview Presentation
Spira Team Overview PresentationSpira Team Overview Presentation
Spira Team Overview Presentation
 
Cloud investment buyers guide
Cloud investment buyers guideCloud investment buyers guide
Cloud investment buyers guide
 
Cloud investment buyers guide
Cloud investment buyers guideCloud investment buyers guide
Cloud investment buyers guide
 
Optimizing order to-cash (e-business suite) with GRC Advanced Controls
Optimizing order to-cash (e-business suite) with GRC Advanced ControlsOptimizing order to-cash (e-business suite) with GRC Advanced Controls
Optimizing order to-cash (e-business suite) with GRC Advanced Controls
 
XsXprt, a User Access Compliance and License Management tool for SAP
XsXprt, a User Access Compliance and License Management tool for SAPXsXprt, a User Access Compliance and License Management tool for SAP
XsXprt, a User Access Compliance and License Management tool for SAP
 
PureApp Presentation
PureApp PresentationPureApp Presentation
PureApp Presentation
 
Automating Security Management in PBCS!
Automating Security Management in PBCS!Automating Security Management in PBCS!
Automating Security Management in PBCS!
 

More from eprentise

COA Masterclass 2022.pdf
COA Masterclass 2022.pdfCOA Masterclass 2022.pdf
COA Masterclass 2022.pdfeprentise
 
Your AP Data is Telling You Something: Five Analytics to Identify Duplicate P...
Your AP Data is Telling You Something: Five Analytics to Identify Duplicate P...Your AP Data is Telling You Something: Five Analytics to Identify Duplicate P...
Your AP Data is Telling You Something: Five Analytics to Identify Duplicate P...eprentise
 
A Stress-free Guide to Mergers Acquisitions and Divestitures.pdf
A Stress-free Guide to Mergers Acquisitions and Divestitures.pdfA Stress-free Guide to Mergers Acquisitions and Divestitures.pdf
A Stress-free Guide to Mergers Acquisitions and Divestitures.pdfeprentise
 
10 Steps to Reduce Complexity, Increase Transparency, and Get Value from you...
10 Steps to Reduce Complexity, Increase Transparency, and Get Value from you... 10 Steps to Reduce Complexity, Increase Transparency, and Get Value from you...
10 Steps to Reduce Complexity, Increase Transparency, and Get Value from you...eprentise
 
Mergers & Acquisitions: Realizing the Value
Mergers & Acquisitions: Realizing the Value Mergers & Acquisitions: Realizing the Value
Mergers & Acquisitions: Realizing the Value eprentise
 
Complexities of Separating Data in an ERP Environment
Complexities of Separating Data in an ERP EnvironmentComplexities of Separating Data in an ERP Environment
Complexities of Separating Data in an ERP Environmenteprentise
 
Ace your Audit: Preparing your Oracle® E-Business Suite for a Financial Audit
Ace your Audit: Preparing your Oracle® E-Business Suite for a Financial AuditAce your Audit: Preparing your Oracle® E-Business Suite for a Financial Audit
Ace your Audit: Preparing your Oracle® E-Business Suite for a Financial Auditeprentise
 
Farewell Oracle® EBS – A Smooth Exit
Farewell Oracle® EBS – A Smooth ExitFarewell Oracle® EBS – A Smooth Exit
Farewell Oracle® EBS – A Smooth Exiteprentise
 
5 Key Audit Procedures for Rock-Solid Trial Balances
5 Key Audit Procedures for Rock-Solid Trial Balances5 Key Audit Procedures for Rock-Solid Trial Balances
5 Key Audit Procedures for Rock-Solid Trial Balanceseprentise
 
EBS Answers Webinar Series - The Power of Ledger Sets and Secondary Ledgers i...
EBS Answers Webinar Series - The Power of Ledger Sets and Secondary Ledgers i...EBS Answers Webinar Series - The Power of Ledger Sets and Secondary Ledgers i...
EBS Answers Webinar Series - The Power of Ledger Sets and Secondary Ledgers i...eprentise
 
EBS Answers Webinar Series - Tricks for Optimizing Cross-Validation Rules in ...
EBS Answers Webinar Series - Tricks for Optimizing Cross-Validation Rules in ...EBS Answers Webinar Series - Tricks for Optimizing Cross-Validation Rules in ...
EBS Answers Webinar Series - Tricks for Optimizing Cross-Validation Rules in ...eprentise
 
EBS Answers Webinar Series - Chart of Accounts Transformation Master Class: T...
EBS Answers Webinar Series - Chart of Accounts Transformation Master Class: T...EBS Answers Webinar Series - Chart of Accounts Transformation Master Class: T...
EBS Answers Webinar Series - Chart of Accounts Transformation Master Class: T...eprentise
 
EBS Answers Webinar Series - Secondary Ledgers: Benefits of Adjustment Ledger...
EBS Answers Webinar Series - Secondary Ledgers: Benefits of Adjustment Ledger...EBS Answers Webinar Series - Secondary Ledgers: Benefits of Adjustment Ledger...
EBS Answers Webinar Series - Secondary Ledgers: Benefits of Adjustment Ledger...eprentise
 
EBS Answers Webinar Series - Ace your Audit: Preparing Your Oracle E-Business...
EBS Answers Webinar Series - Ace your Audit: Preparing Your Oracle E-Business...EBS Answers Webinar Series - Ace your Audit: Preparing Your Oracle E-Business...
EBS Answers Webinar Series - Ace your Audit: Preparing Your Oracle E-Business...eprentise
 
eprentise How Automation will Transform Your Financial Audit
eprentise How Automation will Transform Your Financial Auditeprentise How Automation will Transform Your Financial Audit
eprentise How Automation will Transform Your Financial Auditeprentise
 
eprentise Chart of Accounts Transformation Master Class 2019
eprentise Chart of Accounts Transformation Master Class 2019eprentise Chart of Accounts Transformation Master Class 2019
eprentise Chart of Accounts Transformation Master Class 2019eprentise
 
Making Sense of Alphabet Soup: Complying with Statutory, Regulatory and Compl...
Making Sense of Alphabet Soup: Complying with Statutory, Regulatory and Compl...Making Sense of Alphabet Soup: Complying with Statutory, Regulatory and Compl...
Making Sense of Alphabet Soup: Complying with Statutory, Regulatory and Compl...eprentise
 
Removing Silos and Operating a Shared Services Center with EBS
Removing Silos and Operating a Shared Services Center with EBSRemoving Silos and Operating a Shared Services Center with EBS
Removing Silos and Operating a Shared Services Center with EBSeprentise
 
Secondary Ledgers: The Benefits of Adjustment Ledgers for GAAP Reporting and ...
Secondary Ledgers: The Benefits of Adjustment Ledgers for GAAP Reporting and ...Secondary Ledgers: The Benefits of Adjustment Ledgers for GAAP Reporting and ...
Secondary Ledgers: The Benefits of Adjustment Ledgers for GAAP Reporting and ...eprentise
 
Untangling the Cloud
Untangling the CloudUntangling the Cloud
Untangling the Cloudeprentise
 

More from eprentise (20)

COA Masterclass 2022.pdf
COA Masterclass 2022.pdfCOA Masterclass 2022.pdf
COA Masterclass 2022.pdf
 
Your AP Data is Telling You Something: Five Analytics to Identify Duplicate P...
Your AP Data is Telling You Something: Five Analytics to Identify Duplicate P...Your AP Data is Telling You Something: Five Analytics to Identify Duplicate P...
Your AP Data is Telling You Something: Five Analytics to Identify Duplicate P...
 
A Stress-free Guide to Mergers Acquisitions and Divestitures.pdf
A Stress-free Guide to Mergers Acquisitions and Divestitures.pdfA Stress-free Guide to Mergers Acquisitions and Divestitures.pdf
A Stress-free Guide to Mergers Acquisitions and Divestitures.pdf
 
10 Steps to Reduce Complexity, Increase Transparency, and Get Value from you...
10 Steps to Reduce Complexity, Increase Transparency, and Get Value from you... 10 Steps to Reduce Complexity, Increase Transparency, and Get Value from you...
10 Steps to Reduce Complexity, Increase Transparency, and Get Value from you...
 
Mergers & Acquisitions: Realizing the Value
Mergers & Acquisitions: Realizing the Value Mergers & Acquisitions: Realizing the Value
Mergers & Acquisitions: Realizing the Value
 
Complexities of Separating Data in an ERP Environment
Complexities of Separating Data in an ERP EnvironmentComplexities of Separating Data in an ERP Environment
Complexities of Separating Data in an ERP Environment
 
Ace your Audit: Preparing your Oracle® E-Business Suite for a Financial Audit
Ace your Audit: Preparing your Oracle® E-Business Suite for a Financial AuditAce your Audit: Preparing your Oracle® E-Business Suite for a Financial Audit
Ace your Audit: Preparing your Oracle® E-Business Suite for a Financial Audit
 
Farewell Oracle® EBS – A Smooth Exit
Farewell Oracle® EBS – A Smooth ExitFarewell Oracle® EBS – A Smooth Exit
Farewell Oracle® EBS – A Smooth Exit
 
5 Key Audit Procedures for Rock-Solid Trial Balances
5 Key Audit Procedures for Rock-Solid Trial Balances5 Key Audit Procedures for Rock-Solid Trial Balances
5 Key Audit Procedures for Rock-Solid Trial Balances
 
EBS Answers Webinar Series - The Power of Ledger Sets and Secondary Ledgers i...
EBS Answers Webinar Series - The Power of Ledger Sets and Secondary Ledgers i...EBS Answers Webinar Series - The Power of Ledger Sets and Secondary Ledgers i...
EBS Answers Webinar Series - The Power of Ledger Sets and Secondary Ledgers i...
 
EBS Answers Webinar Series - Tricks for Optimizing Cross-Validation Rules in ...
EBS Answers Webinar Series - Tricks for Optimizing Cross-Validation Rules in ...EBS Answers Webinar Series - Tricks for Optimizing Cross-Validation Rules in ...
EBS Answers Webinar Series - Tricks for Optimizing Cross-Validation Rules in ...
 
EBS Answers Webinar Series - Chart of Accounts Transformation Master Class: T...
EBS Answers Webinar Series - Chart of Accounts Transformation Master Class: T...EBS Answers Webinar Series - Chart of Accounts Transformation Master Class: T...
EBS Answers Webinar Series - Chart of Accounts Transformation Master Class: T...
 
EBS Answers Webinar Series - Secondary Ledgers: Benefits of Adjustment Ledger...
EBS Answers Webinar Series - Secondary Ledgers: Benefits of Adjustment Ledger...EBS Answers Webinar Series - Secondary Ledgers: Benefits of Adjustment Ledger...
EBS Answers Webinar Series - Secondary Ledgers: Benefits of Adjustment Ledger...
 
EBS Answers Webinar Series - Ace your Audit: Preparing Your Oracle E-Business...
EBS Answers Webinar Series - Ace your Audit: Preparing Your Oracle E-Business...EBS Answers Webinar Series - Ace your Audit: Preparing Your Oracle E-Business...
EBS Answers Webinar Series - Ace your Audit: Preparing Your Oracle E-Business...
 
eprentise How Automation will Transform Your Financial Audit
eprentise How Automation will Transform Your Financial Auditeprentise How Automation will Transform Your Financial Audit
eprentise How Automation will Transform Your Financial Audit
 
eprentise Chart of Accounts Transformation Master Class 2019
eprentise Chart of Accounts Transformation Master Class 2019eprentise Chart of Accounts Transformation Master Class 2019
eprentise Chart of Accounts Transformation Master Class 2019
 
Making Sense of Alphabet Soup: Complying with Statutory, Regulatory and Compl...
Making Sense of Alphabet Soup: Complying with Statutory, Regulatory and Compl...Making Sense of Alphabet Soup: Complying with Statutory, Regulatory and Compl...
Making Sense of Alphabet Soup: Complying with Statutory, Regulatory and Compl...
 
Removing Silos and Operating a Shared Services Center with EBS
Removing Silos and Operating a Shared Services Center with EBSRemoving Silos and Operating a Shared Services Center with EBS
Removing Silos and Operating a Shared Services Center with EBS
 
Secondary Ledgers: The Benefits of Adjustment Ledgers for GAAP Reporting and ...
Secondary Ledgers: The Benefits of Adjustment Ledgers for GAAP Reporting and ...Secondary Ledgers: The Benefits of Adjustment Ledgers for GAAP Reporting and ...
Secondary Ledgers: The Benefits of Adjustment Ledgers for GAAP Reporting and ...
 
Untangling the Cloud
Untangling the CloudUntangling the Cloud
Untangling the Cloud
 

Recently uploaded

New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024BookNet Canada
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...Fwdays
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr BaganFwdays
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 3652toLead Limited
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsMiki Katsuragi
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024The Digital Insurer
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brandgvaughan
 
costume and set research powerpoint presentation
costume and set research powerpoint presentationcostume and set research powerpoint presentation
costume and set research powerpoint presentationphoebematthew05
 
Build your next Gen AI Breakthrough - April 2024
Build your next Gen AI Breakthrough - April 2024Build your next Gen AI Breakthrough - April 2024
Build your next Gen AI Breakthrough - April 2024Neo4j
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGMarianaLemus7
 
Science&tech:THE INFORMATION AGE STS.pdf
Science&tech:THE INFORMATION AGE STS.pdfScience&tech:THE INFORMATION AGE STS.pdf
Science&tech:THE INFORMATION AGE STS.pdfjimielynbastida
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machinePadma Pradeep
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 

Recently uploaded (20)

New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial Buildings
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering Tips
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brand
 
costume and set research powerpoint presentation
costume and set research powerpoint presentationcostume and set research powerpoint presentation
costume and set research powerpoint presentation
 
Build your next Gen AI Breakthrough - April 2024
Build your next Gen AI Breakthrough - April 2024Build your next Gen AI Breakthrough - April 2024
Build your next Gen AI Breakthrough - April 2024
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDG
 
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
Science&tech:THE INFORMATION AGE STS.pdf
Science&tech:THE INFORMATION AGE STS.pdfScience&tech:THE INFORMATION AGE STS.pdf
Science&tech:THE INFORMATION AGE STS.pdf
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 

Stay Two Steps Ahead of Your Auditor

  • 1. © 2014 eprentise. 2013 All rights reserved. Jeffrey T. Hare, CPA CISA CIA ERP Risk Advisors jhare@erpra.net Stay Two Steps Ahead of Your Auditor
  • 2. © 2014 eprentise. All rights reserved. 2 Webinar Mechanics • Submit text questions. • Q&A addressed at the end of the session. Answers will be posted within two weeks on our new LinkedIn Group, EBS Answers: http://www.linkedin.com/groups/EBS- Answers-4683349/about • Everyone will receive an email within 24 hours with a link to view a recorded version of today’s session. • Polling questions will be presented during the session. If you want CPE credit for this webinar, you must answer all of the polling questions. • We will be sharing the responses from the poll questions, as well as webinar highlights, on Twitter – be sure to follow us (@eprentise)! | 2
  • 3. © 2014 eprentise. All rights reserved. 3 Objectives Objective 1: Discover the mysteries behind your audit, and help your auditor find what he or she is looking for. Objective 2: Understand the impact of profile options on EBS security and controls. Objective 3: Learn about risks related to “Sensitive Administration Page” in EBS and what controls need to be put in place. Objective 4: Hear about the most significant change management challenges facing organizations: configuration change management. | 3
  • 4. © 2014 eprentise. 2013 All rights reserved. eprentise Can… …So Our Customers Can: Consolidate Multiple EBS Instances Change Underlying Structures and Configurations  Chart of Accounts, Other Flexfields  Inventory Organizations  Operating Groups, Legal Entities, Ledgers  Calendars  Costing Methods Resolve Duplicates, Change Sequences, IDs Separate Data : Transformation Software for E-Business Suite Reduce Operating Costs and Increase Efficiencies  Shared Services  Data Centers Adapt to Change  Align with New Business Initiatives  Mergers, Acquisitions, Divestitures  Pattern-Based Strategies • Make ERP an Adaptive Technology Avoid a Reimplementation Reduce Complexity and Control Risk Improve Business Continuity, Service Quality and Compliance Establish Data Quality Standards and a Single Source of Truth Company Overview: Incorporated 2007  Helene Abrams, CEO | 4
  • 5. © 2014 eprentise. 2013 All rights reserved. ERP Risk Advisors ERP Risk Advisors is a leading provider of Risk Advisory services for organizations using Oracle Applications. We provide consulting and training services related to compliance, security, risk management, and controls. We also assist organizations in implementing GRC-related software from industry-leading companies. | 5
  • 6. © 2014 eprentise. 2013 All rights reserved. Today’s Speaker: Jeffrey T. Hare, CPA CISA CIA CEO of ERP Risk Advisors Background includes public accounting (including Big 4 experience), industry, and Oracle Applications consulting experience Has been working in the Oracle Applications space since 1998 with implementation, upgrade, and support experience First solo book project "Oracle E-Business Suite Controls: Application Security Best Practices" was released in 2009; significant update and expansion of the book coming later in 2014 – will be called “Oracle E- Business Suite Controls: Foundational Principles” | 6
  • 7. © 2014 eprentise. 2013 All rights reserved. Hot Topics in Internal Controls and Security Profile options – what are they and why should you be concerned? Forms that allow SQL Injection and Operating Scripts to be executed from the applications. Configuration Change Management policy and procedures | 7
  • 8. © 2014 eprentise. 2013 All rights reserved. What are Profile Options? Examples Utilities: Diagnostics FND: Diagnostics GL: Journal Review Required FND: Personalization Region Link Enabled Sign-On:Notification | 8
  • 9. © 2014 eprentise. 2013 All rights reserved. How Profile Options are Set System Profile Values | 9
  • 10. © 2014 eprentise. 2013 All rights reserved. How Profile Options are Set (Continued) Personal Profile Values | 10
  • 11. © 2014 eprentise. 2013 All rights reserved. How Profile Options are Defined - Examples | 11
  • 12. © 2014 eprentise. 2013 All rights reserved. How Profile Options are Defined - Examples | 12
  • 13. © 2014 eprentise. 2013 All rights reserved. How Profile Options are Defined - Examples | 13
  • 14. © 2014 eprentise. 2013 All rights reserved. How Profile Options are Defined - Examples | 14
  • 15. © 2014 eprentise. 2013 All rights reserved. Best Practices for Profile Options: Risk Assessment related to profile option values Should they be set in Production? When should they be set? At what level – Site, Application, Responsibility, User Should they go through the change management process? Who should approve them? Review all profile options that are set after the risk assessment Update the risk assessment for new profile options that need to be set Audit all changes to profile options to ensure compliance with policy and risk assessment | 15
  • 16. © 2014 eprentise. 2013 All rights reserved. What are SQL Forms? See 189367.1 – 11i See 403537.1 – R12 See 1334930.1 – R12 Forms that allow SQL statements to be executed from within them and, in some cases, operating system scripts to be run as well. Oracle Recommendations from prior version of 189367.1 / 403537.1:  LIMIT ACCESS TO FORMS ALLOWING SQL ENTRY  To improve flexibility, some forms allow users to enter SQL statements. Unfortunately, this feature may be abused. “Appendix B: Security Setup Forms That Accept SQL Statement” on page 49 contains a list of Forms that allow the user to edit code, add code or otherwise affect executable code. Restrict access to these forms by assigning the responsibility to a small group of users. Consider auditing the database tables listed in the appendix. | 16
  • 17. © 2014 eprentise. 2013 All rights reserved. Versions of Oracle’s ‘Best Practice’ Documents: Version: 3.0.5 July 2007 – MOS Note 189367.1 – Best Practices for Securing Oracle E-Business Suite | 17
  • 18. © 2014 eprentise. 2013 All rights reserved. Versions of Oracle’s ‘Best Practice’ Documents: Document 403537.1 – name changes to Secure Configuration Guide for Oracle E-Business Suite | 18 Guidance related to monitoring is taken out:
  • 19. © 2014 eprentise. 2013 All rights reserved. Examples of SQL Define Alerts Collection Plans (Quality module) BOM Deletion Statements | 19
  • 20. © 2014 eprentise. 2013 All rights reserved. Examples of Ways to Commit Fraud | 20
  • 21. © 2014 eprentise. 2013 All rights reserved. Another Example: | 21
  • 22. © 2014 eprentise. 2013 All rights reserved. Another Example (Continued): | 22
  • 23. © 2014 eprentise. 2013 All rights reserved. List of “Sensitive Administration Forms” from 1334930.1 Define Alert, Concurrent Programs (System Administrator Mode), Concurrent Program Executables, Profile Options, Applications, Data Groups, ORACLE Usernames, Attribute Mapping Details, Define Data Stream, Custom Stream Advanced Setup, Audit Statements, Define Dynamic Resource Groups, Business Rule Workbench, Validation Templates, Attribute Mapping, Attribute Mapping, Objects Meta-data, Spreadtable Metadata Administration, SpreadTable Diagnostics, JTFGANTT, Define WMS Rules, Create Pricing Formulas, New Attribute Mapping, Workflow Process Configuration Framework, Workflow Activity Approval , Configuration Framework, Approvals Management, PL/SQL tester, Write Formula, Define Function, Create QuickPaint Inquiry, Define Assignment Set, Dynamic Trigger Maintenance, Define Security Profile, Descriptive Flexfield Segments, Flexfield Value Sets, Fast Formula Define, Collection Plans, AutoAccounting Rules, Define Query Objects, Delete Constraints, Delete Constraints: Update, Document Entities, Printer Drivers, Collection Elements, Create Custom Sql Page, Data Source LOV Definition Page, Create Parameterized Query Template, Create page for Profiles, Search page for Profiles, Update page for Profiles, Define page for Profile Values, Function Search, SSWA Maintain Objects, Help Utility, Object Details, IBU_A_PZ_FN, IBU_A_UG_FN, IEU_PROVIDER_SITE, JTF_FM_ALLQUERY, JTF_FM_VIEWDOCS, Create Test, Maintain SCORM Adapter Properties, Maintain Learning Object Properties, Define Custom SQL Fields Several we have identified that aren’t even in the Oracle MOS Note: AutoAccounting Rules, Define Query Objects, Delete Constraints, Delete Constraints: Update, Define Custom SQL Fields | 23
  • 24. © 2014 eprentise. 2013 All rights reserved. Best Practices Related to SQL Forms Access should be tightly restricted to just the users management approves having access – suggest SaaS service to find out who has access to all SQL forms All activity in the forms should go through your change management process All code going through the forms should be subject to a peer review before it is entered All activity within the forms should be audited using a trigger or log-based solution All activity should be reconciled back to approved activity For unauthorized changes, appropriate actions must be taken to plug the holes | 24
  • 25. © 2014 eprentise. 2013 All rights reserved. Configuration Change Management ERP Systems – dormant code that is enabled through configurations Impact of enabling functionality is same as ‘development’ activity Do your policies and procedures acknowledge risks of changes to configurations having the impact of code change? Have you performed a risk assessment to identify which configurations have the impact of code change? Has your security been designed taking into account Are you monitoring changes to configurations similar to ways you are/ should be monitoring changes made through SDLC/object oriented development | 25
  • 26. © 2014 eprentise. 2013 All rights reserved. Types of Changes Subject to Change Management Development / SDLC Patching Security Configurations | 26
  • 27. © 2014 eprentise. 2013 All rights reserved. Questions? | 27
  • 28. © 2014 eprentise. 2013 All rights reserved. Thank You! - One World, One System, A Single Source of Truth - Jeffrey T. Hare, CPA CISA CIA ERP Risk Advisors | www.erpra.net jhare@erpra.net | 970.324.1450 Answers from this session will be posted within two weeks on the LinkedIn Group, EBS Answers: http://www.linkedin.com/groups/EBS-Answers-4683349/about | 28