cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

S-OX Question

Go to solution
suresh_datti
Active Contributor

on ‎02-14-2007 7:03 PM

0 Kudos

In terms of S-OX compliance who is responsible for the OADP configuration required for MSS in the backend? Is it the Business Analyst or the Technical Resource? I am a Technical Resource & having a hard time convincing our folks to give me SPRO Authorization & thereby do the OADP config. I would appreciate if anyone can share the thoughts/experiences on this issue.

~Suresh

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎02-15-2007 5:01 PM
0 Kudos

Hi Suresh,

Not sure what your Business process is but logically the Business analyst should give you the requirements for you to do the configaration.Thats my take on it.

Regards

Uday

Show replies
Show replies
suresh_datti
Active Contributor
‎02-15-2007 5:46 PM
0 Kudos

We use this tool called VIRSA that does the S-OX compliance analysis..

typically a Developer isn't supposed to have the IMG ie the SPRO authn.. my argument (that has no takers) is that, if the developer knows how do the config & the BA doesn't know it, why not let the Developer do it.. but at our place it amounts to crossing the SOD border( Segregation Of Duties).. just wanted to check how others deal with such issues.. As of now, I show the BA what needs to be done & meet the reqt...

~Suresh

Answers (2)

Answers (2)

suresh_datti
Active Contributor
‎07-01-2007 3:50 AM
0 Kudos

don't expect any further responses..

Show replies
Show replies
Former Member
‎07-02-2007 6:36 AM
0 Kudos

Hi Suresh,

It happens several times with all , well in this case what I prefer to do is just waiting for the right time and checking for the right opportunity. In the mean time doing it in development , due to this my dev ID also they blocked although never sit ideal either helping all guys or just having fun in SDN.

Never mind and go ahead collecting and sharing knowledge and smartly check to opportunity.

Manoj Shakya

ChrisSolomon
Active Contributor
‎02-15-2007 8:05 PM
0 Kudos

haha My experience....VIRSA is a tool for "suggestions" not "absolutes". I am a technical consultant with functional knowledge as well. Therefore, I wear several hats at times....nothing that cause conflicts with SOX but just cross-discipline. Anyways, it has been my experience than in regards to ESS and MSS config, it is more technical than anything and thus, I tend to have to do it. The config for ESS/MSS from a business standpoint is little to none....ESS/MSS basically sits on top of what is configured in the true business areas of HR config.

Now, if "they" just don't get that and they want to pay you to sit over an analysts shoulder and instruct "click here, enter this, go there, do that"....then I'd say fine. You brought up the concern and they ultimately made the decision. Have fun!

Show replies
Show replies
suresh_datti
Active Contributor
‎02-15-2007 8:15 PM
0 Kudos

Christopher,

thx for the empathy.. was just venting out my frustration...

~Suresh

Ask a Question