Session ID: 11096

Abstract: Organizations implementing ERP Cloud struggle to go into production with well-designed roles causing significant operational and audit risk. These risks often go unaddressed until an auditor identifies them as a control deficiency. In this presentation we will look at ways to minimize these risks using a combination of seeded and custom roles when going live and then transitioning to a more secure environment based on the principle of least privilege.

Objective 1: Provide an overview of how roles are designed in most implementations and why

Objective 2: Present examples of significant risks organizations are taking after go live

Objective 3: Consider how these risks can be monitored post-go-live

Objective 4: Identify how privileged access can be transitioned to least privileged access

Objective 5: Review tools Oracle provides to monitor and manage these risks

Audience: User Accounts, Help Desk, Trainer