Best Practices for Segregration of Duties (SoD) Security Assessments
Session Overview: Security assessments are crucial for all organizations and businesses as they promote accountability, transparency, and risk minimization, while also helping prevent fraudulent activities. Access to multiple critical areas by a single user can potentially lead to fraudulent or erroneous transactions, causing financial misstatements, data integrity issues, and reporting errors. Therefore, it is advisable to follow these best practices before initiating a security assessment to ensure an optimal and effective evaluation process.
(1) Prepare for ruleset workshops
(2) Prepare a best practice SoD ruleset
(3) Obtain a RCM if applicable
(4) Communicate to the right user groups
(5) Understand the business
Learning Objectives:
- Prepare for risk ruleset workshops by introducing the security assessment to key participants
- Ensure you have a ruleset that is tailored to the business. Obtain a RCM beforehand to map controls to SoD conflicts prior to your ruleset workshops.
- Understand the business and what the current / future state will look likeĀ
Speakers: Amy Mickle
Recorded at:āÆCommunity Summit NA 2025ā
Type: Fast Chat
Ability Level: 101 – New ToĀ
Primary Product: Dynamics 365 F/SCM (FO)
Tracks: Security
Terms: All rights reserved by the speaker, Community Summit NA, and Dynamic Communities and cannot be reproduced or distributed without express written consent by the speaker and Dynamic Communities.āÆā
