Is there a way to review segregation of duties in ...
# generall
Luis
06/11/2024, 7:45 PMIs there a way to review segregation of duties in NS without third-party tools? Do we have to go through each permission of all active roles in NS?
s
Sam-I-Am
06/11/2024, 7:49 PMI wish there was something to do SOD analysis included in the system. Over the years I did that by running the show role difference tool (unchecking the diff box) and compare all the role - using one as the base. Then use the extract to do the review. It works - check it out
https://static.rainfocus.com/oracle/sw19/sess/1546631310573001gv1X/PDFPF%20/FIN1526SES_THURS_1553185241855001B1fO.pdf
🙏 1
a
AK
06/11/2024, 8:35 PMYou can create a saved search to do it. It takes a bit of time, but will help avoiding SoD issues in the future and will make testing for potential SoD issues when provisioning new permissions a breeze.
I created those types searches before, and they are totally worth it.
l
Luis
06/11/2024, 9:35 PMThank you!
Luis
06/15/2024, 2:19 AMI suppose NS does not also have SoD ruleset. Something that would flag which permissions are incompatible? How does StrongPoint and similar apps do it? Built their own rule set?
a
AK
06/15/2024, 12:53 PMYou have to work with your external auditors that would have SoD rules list. Then you translate it into NetSuite permissions/ permission levels. As far as I remember, Strongpoint folk used to work in the big 4 auditing firms and they had the list. If you are a public company, you have to work with your auditors on the SoD list because they will be auditing it after all. Otherwise try to google it
l
Luis
06/16/2024, 8:47 AMMakes sense. Thank you.
2 Views