{"title":"A Segregation of Duties Case Study in the Purchase-to-Pay Process with an SAP Example","authors":"Nancy Jones, J. Mensching","doi":"10.3194/AISE.2007.2.1.1","DOIUrl":null,"url":null,"abstract":"Abstract With the advent of legislation dealing with financial responsibility and information assurance, the topic of segregation of duties has gained additional importance. Recent studies have found that segregation of duties is one of the areas in which companies have frequently disclosed material internal control weaknesses under reporting requirements of the Sarbanes-Oxley Act of 2002. This is a case assignment that develops both the theoretical base for segregation of duties and then illustrates how this is accomplished in a highly integrated computerized enterprise business environment. The authorization system within the SAP R/3 system is used to illustrate the implementation of segregated duties in one type of ERP system. There are four steps to the case: assessing risks of the business process, defining positions within the organization to handle a set of defined tasks, developing an authorization matrix for designated employees, and examining the SAP authorizations system.","PeriodicalId":146060,"journal":{"name":"AIS Educator Journal","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"1900-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"AIS Educator Journal","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.3194/AISE.2007.2.1.1","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 4
Abstract
Abstract With the advent of legislation dealing with financial responsibility and information assurance, the topic of segregation of duties has gained additional importance. Recent studies have found that segregation of duties is one of the areas in which companies have frequently disclosed material internal control weaknesses under reporting requirements of the Sarbanes-Oxley Act of 2002. This is a case assignment that develops both the theoretical base for segregation of duties and then illustrates how this is accomplished in a highly integrated computerized enterprise business environment. The authorization system within the SAP R/3 system is used to illustrate the implementation of segregated duties in one type of ERP system. There are four steps to the case: assessing risks of the business process, defining positions within the organization to handle a set of defined tasks, developing an authorization matrix for designated employees, and examining the SAP authorizations system.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
