About Thirdware 2 AUTOMOTIVE ELECTRONICS LIFE SCIENCES CONSUMER PRODUCTS FOOD amp BEVERAGE FINANCIAL RETAIL TELECOMMUNICATIONS IT SERVICES INDUSTRIES 1995 QAD Asia Pacific 2000 ID: 584662
Download Presentation The PPT/PDF document "Managing Business Access Conflicts" is the property of its rightful owner. Permission is granted to download and print the materials on this web site for personal, non-commercial use only, and to display it on your personal computer provided you do not modify the materials and that you retain all copyright notices contained in the materials. By downloading content from our website, you accept the terms of this agreement.
Slide1
Managing Business Access Conflicts Slide2
About Thirdware2
AUTOMOTIVE
ELECTRONICS
LIFE SCIENCES
CONSUMER PRODUCTSFOOD & BEVERAGEFINANCIAL
RETAIL
TELECOMMUNICATIONS
IT SERVICES
INDUSTRIES
1995:
QAD Asia Pacific
2000:
Ford
20% Equity
2005:
Oracle/Hyperion Partner & SAP Partner
2008:
CXO Cockpit Partner
2013:
Salesforce & BIRST Partner
MILESTONES
300+
HAPPYCUSTOMERS
900+DEDICATEDEMPLOYEES
GLOBALOPERATIONS
Consulting and ImplementationApplication Management ServicesUpgrades, Transitions & SeparationsApplication Development ServicesTrainings & Learning Services
EXPERTISE
CELEBRATING 20 YEARS
OF PROVIDING SERVICES IN QAD
AND QAD ENABLEMENT.Slide3
Visteon Fast FactsSlide4
Business IssuesLack of visibility into QAD SOD Issues.Analysis and mitigation of SOD Conflicts were reactive and un-sustainable.Heavy workload for internal control / security team in –
Analyzing and executing QAD accessPreparing reports manually for audit requirementsMaintenance and propagation of SOD Matrix
4Slide5
BAC Solution5Slide6
QAD Security Functions
6
Domain level security
Role based security
Menu & Group level Reports
Menu, Groups & Roles
Simplified Screens
User Access
Mgmt.Slide7
Business Access Control Functions
7
Domain level security
Role based security
Menu & Group level Reports
Menu, Groups & Roles
Simplified Screens
User Access
Mgmt.
SOD Conflict Matrix
SOD Conflict Status Analysis
Maintain SOD Conflict Matrix
SOD Conflict data based on access provided to usersSlide8
Business Access Web Application
8
Domain level security
Role based security
Menu & Group level Reports
Menu, Groups & Roles
Simplified Screens
User Access
Mgmt.
SOD Conflict Matrix
SOD Conflict Status Analysis
Web-based Provisioning Tool
QAD Access Approval Workflow
Web-based provisioning tool with real-time SOD Conflict Query for users/ approvers
SOD Conflict based approval workflow Slide9
VESS
Solution Architecture
9
QAD
Webapp
Admin
Domain, Menu, Groups, Simplified Screen
User Conflict Data
Domain, Menu, Users
Conflict Data
QAD to
WebApp
VESS
User Access Request - QAD
VESS to
WebApp
User Access Request
Approvals
User Access Request Approver Dashboard
Visteon Rule Book
QAD
Rulebook Updates
Webapp
to QAD
User Creation/Update
QAD
User UpdatesWebapp to QAD
Webapp
to QAD
Ticket StatusSlide10
Sample Conflict Matrix10
Job Description : Code that indicates unique roles/responsibilities
applicable in QADJob Description :Process Incoming Payment
Linked to Std.
QAD Menus & Groups
27.6.4.6
AR Payment Automatic Checks
27.6.5.1 AR Payment Manual
Process Incoming Payment
27.6.4.6
AR Payment Automatic Checks
High Conflict
5.13.1 Purchase Order Receipts
Manage Good Receipts
27.6.5.1 AR Payment Manual
5.13.14 PO Shipper
Maintenance
5.13.20 PO Shipper ReceiptSlide11
Linking Menus to Job Description 11
JD Code & Job
Description
QAD Menus applicable for the Job DescriptionSlide12
Solution Walkthrough12
SOD Conflict status is Validated and Reported to user when roles are selected
User Access Request from Visteon Security System. When Application is “QAD /
MfgPro
” control is transferred to BAC WebAppSlide13
Solution Walkthrough13
User can see the individual group level conflict statusSlide14
Solution Walkthrough14
User submits the access request with reason for access needed. Slide15
Solution Walkthrough15
Approval Dashboard
Access Requests Count
By Conflict Status
Individual Ticket with Conflict StatusSlide16
Solution Walkthrough16
Conflict Status
Approval Levels
Low Conflict
Medium ConflictAccess Control TeamHigh Conflict
Access Control Team
Security
AdministratorSlide17
Key BenefitsAll User Access are validated for SOD Conflict Status during submission.All User Access Conflicts are reviewed, approved and recorded.
Automation of User Creations and User Deletions.Temporary User Access controlled by Start & End Date.Users and Functional Approvers have visibility to SOD Conflicts and are empowered to make access request decisions.Automated process to monitor usage and action on inactive useridsRemoved
the burden on internal control to continually audit / address the access requests.Reduced workload on Security Control team.Approximately 60 Person Days of effort saved on monthly basis.
17