![]() ![]() However, IT partners also have a role in this delicate phase. Lack of documented data access policy in the organization.Īll of the above suggests that access policy and segregation of duties is the client's responsibility. Process and access control are not part of the design process, as the team focuses only on functional design.Ĥ. ![]() Security design is often the IT team's responsibility, and users are not always aware of the company's access policies.ģ. Users have a lot to work on during the implementation, and access control is always postponed to a later stage until it never gets done.Ģ. Access security is a low priority during the implementation. I have worked on many projects, and I spotted common reasons companies don't include access policies in the ERP implementation:ġ. Why is such an important control tool missing from most ERP implementations? Partly, it's our fault: Separation of Duties is a standard internal control to prevent fraud. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |