Documente Academic
Documente Profesional
Documente Cultură
Access Controls
The Opportunity
Access management with segregation of duties is critical requirement of every
organization today. By having appropriate roles and authorizations maintained in the
organization we can prevent frauds and control user access.
Despite the importance of access some of the key challenges that organizations are
facing today are
IT
(Security/Controls Team)
I need ALL
access, Im a
Super User
Why dont
you let me do
my job ?
I hired Bill today.
He needs access to close
books by tomorrow!!!
Auditors/Compliance
Teams
Violating so many
controls? This is
ugly...
Senior Management
Why cant you
ever get your
act together?
Figure above depicts ever growing access demand of business and stringent
audit requirements.
Capgemini Solution
Capgemini Global Process Model based standard roles and associated
tasks will ensure conflict free roles while ensuring adequate access to
operating team for seemless performance of various processes.
How It Works
Step by step approach for conceptualization, analysis and remediation around
Access Controls.
Case Study
Capgemini is currently
providing complete access
control service including
global reporting and
analytics across more than
50 countries for leading Fast
Moving Consumer Goods
(FMCG) company. The scope
includes Role management,
User access management,
monitoring critical access
and super users access.
Role management includes
evaluation of effectiveness
of mitigation controls.
Capgemini has provided
the list of global mitigation
controls which are part of the
Global Process Model.
Capgemini has increased
visibility with global reporting
along with recommendations
on remediation for identified
risks. The global reporting
offers summarized as well
as drill down view of the risk
areas by country or business
process. Analytics around
top 5 sensitive access risks,
unmitigated SOD risks, usage
for fire fighter Single Platform
Module (SPM) and more help
drive the organization focus
towards key risk areas and
address them quickly.
Risk Recognition
Rule
Building and
Validation
Analysis
Remediation
Phase One
Mitigation
Phase Two
Continuous
Compliance
Phase Three
Sensitive Access
Segregation of Duties
Optimize Operations
Terry Sandiford
terence.sandiford@capgemini.com
Capgemini Differentiators
Differentiator
Purpose
SPRInT
GRC Business
Value
Workshops
GRC CoE
Infrastructure
Ready to Run
Training Scenarios
GPM
Risk and Control
Library
CG GRC Global
Community
About
Capgemini
With more than 125,000 people
in 44 countries, Capgemini is one
of the worlds foremost providers
of consulting, technology and
outsourcing services. The Group
reported 2012 global revenues of
EUR 10.3 billion.
Together with its clients,
Capgemini creates and delivers
business and technology solutions
that fit their needs and drive the
results they want.
A deeply multicultural organization,
Capgemini has developed its own
way of working, the Collaborative
Business Experience, and draws
on Rightshore , its worldwide
delivery model.
Learn more about us at
www.capgemini.com
The information contained in this document is proprietary. 2013 Capgemini.
All rights reserved. Rightshore is a trademark belonging to Capgemini.