Session ID: 11096
Abstract: Organizations implementing ERP Cloud struggle to go into production with well-designed roles causing significant operational and audit risk. These risks often go unaddressed until an auditor identifies them as a control deficiency. In this presentation we will look at ways to minimize these risks using a combination of seeded and custom roles when going live and then transitioning to a more secure environment based on the principle of least privilege.
Objective 1: Provide an overview of how roles are designed in most implementations and why
Objective 2: Present examples of significant risks organizations are taking after go live
Objective 3: Consider how these risks can be monitored post-go-live
Objective 4: Identify how privileged access can be transitioned to least privileged access
Objective 5: Review tools Oracle provides to monitor and manage these risks
Audience: User Accounts, Help Desk, Trainer