and more in a single search tool across platforms. Read the announcement here. |
04/12/2022 01:24 PM
Segregation of duties (SOD), also called separation of duties, refers to a set of preventive internal controls in a company’s compliance policy that mitigates the risk of error and fraud in accounting and financial statements by requiring more than one person to complete a transaction-based task.
You can use mitigation controls when it is not possible to separate Segregation of duties SoD from the business process. For example, a single user has access to and performs the tasks of accepting cash payments and recording the payments. You need a mitigating control to prevent fraud – for example, we may specify that a second user must perform a reconciliation, reviewing the cash against the recorded transaction
You can set up a mitigation control for a risk to be effective for a time interval as in below screenshot. Any user account violating the risk will be automatically mitigated for the defined time period both in preventative and detective SoD evaluation
You can set up recommended mitigating controls for mitigating a risk as seen below that would be helpful for the SoD owner when mitigating the risk
All the risks mitigated are seen under Assigned associations in a mitigating control definition
Risk will be in “Risk Accepted” status until the Mitigating control End Date passes
Solved! Go to Solution.
04/12/2022 03:13 PM
Thanks Aarthi.