ORACLE ADVANCED ACCESS CONTROLS CLOUD SERVICE

Similar documents
ORACLE ADVANCED FINANCIAL CONTROLS CLOUD SERVICE

Oracle Discrete Cost Management Information Discovery

Oracle Maintenance Cloud

Oracle Product Hub Cloud

ORACLE TASK MANAGEMENT CLOUD

ORACLE PROJECT MANAGEMENT CLOUD

Oracle Partner Management

ORACLE INVENTORY MANAGEMENT CLOUD

Oracle Order Management Cloud

Oracle Financials Accounting Hub

TABLE OF CONTENTS DOCUMENT HISTORY 3

Oracle Manufacturing Cloud

JD Edwards EnterpriseOne Mobile Applications

Oracle Planning and Budgeting Cloud Service

Oracle Revenue Management Cloud

ORACLE INVENTORY MANAGEMENT CLOUD

Oracle Financials Cloud

JD Edwards EnterpriseOne Operational Sourcing

Oracle Utilities Analytics for Customer Care and Billing

ORACLE FUSION FINANCIALS CLOUD SERVICE

Oracle Systems Optimization Support

Oracle Manufacturing Cloud R13

Oracle Enterprise Manager 13c Cloud Control

Advanced Support for Server Infrastructure Refresh

Oracle Banking Enterprise Collections

An Oracle White Paper March Access Certification: Addressing and Building On a Critical Security Control

Oracle Financial Services Data Foundation

Oracle Revenue Management Cloud

Oracle BigMachines CPQ Cloud Service Products Document Engine Feature

Oracle Process Cloud Service

PeopleSoft Mobile Inventory Management for Healthcare

PeopleSoft Time and Labor

Oracle Big Data Discovery Cloud Service

Asset Register Report

Oracle Hyperion Capital Asset Planning

Oracle Services Procurement

Oracle Procurement Cloud

JD Edwards EnterpriseOne General Ledger

Oracle Receivables. Increase Operational Efficiency and Cash Flow. Streamline Invoice Processing

Oracle Utilities Customer Care and Billing 2.5 Benchmark Report

ORACLE FINANCIAL SERVICES DATA WAREHOUSE

TABLE OF CONTENTS DOCUMENT HISTORY

Integration Concepts for JD Edwards EnterpriseOne Human Resources and Oracle Taleo Business Edition Recruiting Cloud Service

Key features of Oracle Hospitality OPERA Sales and Catering Premium Cloud Service

Supply Chain Innovation Fuels Success SAP ERP and Oracle Supply Chain Management: A Case for Coexistence. An Oracle White Paper

ORACLE CRM ON DEMAND DISCONNECTED MOBILE SALES FOR LIFE SCIENCES

Oracle Service Cloud. New Feature Summary

AUTOVUE 3D PROFESSIONAL ADVANCED

Oracle Contract Lifecycle Management for Public Sector

THE NEW HYPER-CONNECTED ENTERPRISE. Improve collaboration. Enhance customer experiences. Streamline business processes.

See What's Coming in Oracle Talent Management Cloud

Accelerate Your Response to the EU General Data Protection Regulation (GDPR) with Oracle Cloud Applications

Oracle WebCenter Sites

Oracle Sourcing. Cut Costs with Online Collaboration and Negotiation

Oracle DataRaker The Most Complete, Most Reliable Solution for Transforming Complex Data into Actionable Insight

Information That Predicts

The Benefits of Consolidating Oracle s PeopleSoft Applications with the Oracle Optimized Solution for PeopleSoft

January Oracle Real Time Decisions Statement of Direction

Oracle Crystal Ball and Minitab O R A C L E W H I T E P A P E R N O V E M B E R

Oracle CPQ Cloud Solutions for enterprises and Fast Growing Companies

ORACLE CLOUD MANAGEMENT PACK FOR MIDDLEWARE

An Oracle Strategy Brief November Better Business Intelligence for Insurers: Three Ways to Think Differently

An Oracle White Paper December Reducing the Pain of Account Reconciliations

Oracle CPQ Cloud and Salesforce.com Integration

Oracle Hospitality elearning for OPERA Cloud Edition

Oracle CPQ Cloud for Channel Sales Streamline the Sales Process for Channel Partners

Oracle Linux Management with Oracle Enterprise Manager 13c Cloud Control O R A C L E W H I T E P A P E R M A R C H

Oracle Financial Services Loan Loss Forecasting and Provisioning

PEOPLESOFT ebill PAYMENT

JD EDWARDS. Drive Digital Transformation with the Internet of Things

Driving Strategic Planning with Predictive Modeling O R A C L E W H I T E P A P E R N O V E M B E R

BLOCKCHAIN CLOUD SERVICE. Integrate Your Business Network with the Blockchain Platform

Oracle Prime Projects Cloud Service

Oracle Business Intelligence Cloud Service Boot Camp. Release 1.0

Oracle Fusion Human Capital Management

Oracle WebCenter: The Center of Engagement for Business

Oracle Big Data Discovery The Visual Face of Big Data

An Oracle White Paper December HCM Succession Planning

TABLE OF CONTENTS DOCUMENT HISTORY 3

SCM Cloud B2B Messaging Strategy

Using Oracle E-Business Suite Business Events for Integrations in Integration Cloud Service

Primavera Prime Projects Cloud Service

PeopleSoft Country Extension for Argentina

Oracle Autonomous Data Warehouse Cloud

WebCenter Content. Complete and Versatile Content Management

Oracle Big Data Cloud Service

Introduction. Top Enterprise Performance Management Cloud Trends for

PeopleSoft on Oracle Ravello Cloud Service ORACLE WHITE PAPER AUGUST 2017

ALL OF YOUR WORK. OPTIMIZED.

Oracle Autonomous Data Warehouse Cloud

The Internet of Things: Unlocking New Business Value. Let Oracle energize your business with IoT-enabled applications.

Oracle Account Reconciliation Cloud. November 2017 Update (17.11) What s New

ORACLE DATA INTEGRATOR ENTERPRISE EDITION

An Oracle White Paper September Roadmaps to Oracle Fusion Applications for Current Oracle Applications Customers

ORACLE COMMUNICATIONS UNIFIED COMMUNICATIONS SUITE

Benefits of Deploying Oracle E-Business Suite on Oracle Cloud At Customer O R A C L E W H I T E P A P E R D E C E M B E R 2017

Network Policy as a Service

Oracle Talent Management Cloud

Improve Field Performance at A Lower Operating Cost with Oracle Utilities Mobile Workforce Management

Transcription:

ORACLE ADVANCED ACCESS CONTROLS CLOUD SERVICE Advanced Access Controls (AAC) Cloud Service enables continuous monitoring of all access policies in Oracle ERP, potential violations, insider threats and fraud. It automates security analysis to ensure segregation of duties, and compliance with access policies. Organizations can easily upgrade their existing processes by deploying a pre-built library of best practice access controls, or graphically author new controls to suit their changing needs. They can manage all their application access risks, using access controls and compensating monitoring controls with a secure solution embedded within the Oracle ERP Cloud. K E Y F E A T U R E S Continuously monitor access policies Pre-built Best Practice Controls for Segregation of Duties Graphical Workbench for users to author and configure controls 6,000+ ERP Cloud access entitlements & access points to configure controls Remediation of access conflicts supported by visualization & simulation Integration with Financial Reporting Compliance Cloud Service Embedded dashboard with analytics and reporting Protect against Fraud & Insider Threats by Enforcing Access Policies AAC provides comprehensive management of application access. It automates security analysis, identifies violation of access policies, helps rationalize roles and remediate conflicts, and ensures segregation of duties. AAC helps organizations: Prevent fraud by restricting privileges so that no user is able to perform end-to-end financial transactions independently Accelerate secure deployment of Cloud ERP Applications - by designing roles that are free of SoD conflicts. Ensure compliance with audit requirements and mandates (such as SOX) by auditing access privileges. Protect information assets from insider threats by limiting and monitoring access to sensitive data and super-user privileges. Ensure Segregation of Duties by Automating Security Analysis Complete scans of full access-paths: AAC analyzes application access by using automated complete scans of all access paths, to identify if a user has access to one or more privileges that violate SoD policies. It allows access administrators to focus on legitimate conflicts by speedily eliminating false positives. Administrators are able to identify root cause of each conflict, by visualizing the access paths involved. They are able to visualize access paths for each role and user, facilitating remediation of the conflict. Fine-grained analysis of privileges: Auditors typically require a fine-grained SoD analysis based on granular functional and data privileges. The only scalable and sustainable way to deliver these complex requirements is via a

pre-integrated solution that automates and simplifies the entire SOD lifecycle. When faced with this challenge, organizations may find it expedient to adopt a coarse-grained analysis of composite or enterprise roles, offered by some provisioning services. However, as they evolve, they quickly lose track of what privileges are included in these broad sets of roles, which makes coarsegrained SoD inaccurate and unreliable. Such seemingly elegant solutions, in fact result in audit objections that are expensive in the long run. RELATED SERVICEs Oracle Financial Reporting Compliance Cloud Service for streamlined internal assessments and compliance Oracle Advanced Financial Controls Cloud Service for monitoring financial transactions. Oracle s Cloud Access Security Broker Service for monitoring multi-cloud environments, network traffic, and suspicious Cloud activity. Pre-integrated & Embedded: AAC is the only pre-integrated solution that provides fine-grained SOD analysis of functional and data security across all privileges, role hierarchies, and user assignments, for Oracle ERP Cloud. AAC also complements Oracle Cloud Access Security Broker with data analysis of who has valid and authorized access within Cloud ERP, and may be resorting to malicious transactions or causing errors Upgrade to Industry Best Practices with Pre-built Library of Controls Upgrade to Industry Best Practices: The library of controls is based on best business practices and over a decade of customer experience that add value by recognizing ground realities and important considerations from successful implementations. Sample Access Controls Reconcile Bank Accounts and Enter Customer Receipts Create Payments and Create Purchase Orders Create Payables Invoices and Receive Goods & Services Verify Physical Inventory and Receive Goods & Services Enter Customer Receipts and Return Goods & Services Configure Pre-Built Controls to Monitor Policies: AAC lets organizations configure pre-built controls to enforce access policies, such as segregation of duties, and limited access to sensitive data and superuser privileges. Accelerate Implementation: The application delivers pre-built controls that are ready to use, accelerating deployment and increasing return on investment. These controls can be up and running quickly to automate monitoring of access controls and ensuring segregation of duties. 2 ADVANCED ACCESS CONTROLS CLOUD SERVICE

Respond to Evolving Needs by Authoring New Controls Author Controls Graphically: Organizations can meet their specific requirements by modifying existing controls or authoring new controls, using a visual editor. Users can author controls by specifying combinations of access point privileges that would violate an access policy. A set of privileges may also be grouped into broader entitlements to reduce complexity, and provide ease of use and maintenance. AAC s authoring workbench provides easy to-use building blocks to construct powerful searches using conditional filters and Boolean logic such as AND and OR. This provides users unparalleled ease & flexibility to specify unacceptable access conflicts. Figure 1. Advanced Access Controls Graphical Control Design Workbench Sample Access Points Financials Procurement Supply Chain Enter Journal Run Balance Sheet Closing Journals Program Manage Bank Account Approve Payables Invoice Maintain Supplier Create Purchase Order from Requisitions Receive Receiving Shipment Line Create Miscellaneous Transactions Approve Physical Adjustment 3 ADVANCED ACCESS CONTROLS CLOUD SERVICE

Sample Access Entitlements Financials Procurement Supply Chain Create Payments Enter Customer Receipts Create Supplier Create Purchase Order Receive Goods & Services Create Inventory Transactions Manage Physical Inventory The library consists of over 6,000 pre-built Entitlements & Access Points. Manage Access Conflicts using Sophisticated Analysis Visualize Results Instantly to Identify Root Causes of Conflicts: AAC displays entire access paths from roles to privileges to allow users to quickly identify the source of the conflict, and help develop a remediation plan. Figure 2. Advanced Access Controls offers visualization of access conflicts Optimize Role definitions: By identifying & addressing access conflicts within any given role, organizations can rapidly rationalize roles that have inherent access conflicts. This leads to a quick resolution of conflicts, and accelerates implementation design and deployment. Prioritize responses to access violations: Organizations can chose to respond to access risks pragmatically, based on the severity and ground realities. They may choose to either remediate access conflicts, or accept conflicts and monitor transactions by deploying compensating controls. Simulate Impact of Remediation Actions: Users can simulate & evaluate the impact of remediation actions, and assemble a multi-step plan before deploying. Minimize Manual Interventions: AAC identifies each conflict and tracks its status without the need for any manual intervention. As users deploy remediation steps, on each subsequent analysis, AAC automatically determines if a previously identified conflict has been resolved, and closes it. 4 ADVANCED ACCESS CONTROLS CLOUD SERVICE

Implement Integrated Risk Management using an Embedded Solution Substantiate Financial Reporting Compliance: AAC Control Analysis yields powerful Audit results, which can be related to documented business risks. It enables Access Certification, the process of documenting the results of SoD analysis, so that it is readily available and verifiable as audit evidence. This ensures additional scrutiny of access privileges by line managers, and enforces accountability. Controls Analysis & Results serve as powerful and objective evidence to substantiate compliance with access policies, as part of Internal Controls Framework. Achieve a pragmatic balance between control and productivity: Organizational access control needs vary between business units, locations, business processes based on the number of employees. For instance, when faced with limited employee resources, organizations often need to grant wider access privileges to certain users, thereby introducing SoD risk and vulnerability. Oracle Risk Management offers transaction monitoring to mitigate risk in such situations. Occasionally, situations arise where a certain user has to be intentionally granted excess privileges to carry out certain tasks, which may violate established SoD policies. This may be caused by another employee's absence, or to fix a one-time issue, under time-constraints. Under such circumstances, organizations can limit their exposure by granting additional access to specific users for a limited time, rather than changing role definitions. They can also monitor the activity of such users within that time window, to mitigate risk and collect audit evidence. Provide Executives with Continuous Insight & Metrics: Create confidence in the security and the effectiveness of access controls by providing information that is easy to understand. Executive dashboards can be configured to display actionable insights related to access risks for timely follow up and quick resolution. 5 ADVANCED ACCESS CONTROLS CLOUD SERVICE

Comprehensive and Embedded Evolves as You Grow AAC offers a comprehensive set of capabilities that can be configured to match your changing needs over time. These capabilities include: Ensure Segregation of Duties Upgrade to Industry Best Practices Author New Controls Remediate Access Violations Manage Application Access Risks using an embedded solution Automate Security Analysis Analyze access privileges using complete scans of all access paths Identify root cause of access violations by visualizing access conflicts Upgrade your existing controls to industry best practices Get immediate value by using pre-built controls Reduce complexity by grouping fine-grained privileges into functional entitlements Empower users to author new access rules and policies graphically Accelerate authoring of new controls graphically by leveraging a library of 6000+ pre-built access points in Oracle Cloud. Optimize role definitions by addressing intra-role conflicts Respond to risks based on severity Remediate conflicts, or choose to monitor with compensating controls Evaluate remediation plans by simulating impact of proposed changes on results Strengthen/Substantiate Financial Reporting Compliance efforts with access audit results. Assess risk mitigation value, and prioritize access controls Link access analysis results to Financial Reporting Controls Mitigate access risks by monitoring transactions using compensating controls in Advanced Financial Controls C O N T A C T U S For more information about Advanced Access Controls, visit cloud.oracle.com/risk-management-cloud or call +1.800.ORACLE1 to speak to an Oracle representative. C O N N E C T W I T H U S blogs.oracle.com/oracle facebook.com/oracle twitter.com/oracle oracle.com Copyright 2017, Oracle and/or its affiliates. All rights reserved. This document is provided for information purposes only, and the contents hereof are subject to change without notice. This document is not warranted to be error-free, nor subject to any other warranties or conditions, whether expressed orally or implied in law, including implied warranties and conditions of merchantability or fitness for a particular purpose. We specifically disclaim any liability with respect to this document, and no contractual obligations are formed either directly or indirectly by this document. This document may not be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without our prior written permission. Oracle and Java are registered trademarks of Oracle and/or its affiliates. Other names may be trademarks of their respective owners. Intel and Intel Xeon are trademarks or registered trademarks of Intel Corporation. All SPARC trademarks are used under license and are trademarks or registered trademarks of SPARC International, Inc. AMD, Opteron, the AMD logo, and the AMD Opteron logo are trademarks or registered trademarks of Advanced Micro Devices. UNIX is a registered trademark of The Open Group. Version 0917 6 ADVANCED ACCESS CONTROLS CLOUD SERVICE

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback