Mitigating Controls – Should you use them?

Mitigating controls are never as desirable as an effective segregation of duties, but in some situations, a breach of a security rule may just have to exist.

Home » Industry Insights » Mitigating Controls – Should you use them?

Mitigating Controls – Should you use them? by ALLOut Security

Mitigating Controls – Should you use them? What controls should you have?

Mitigating controls on a risk situation is never as desirable as an effective segregation of duties. But it is recognised that in some situations, a breach of a security rule may just have to exist (for example if someone is providing temporary cover for another role within their department).

What sort of mitigating or compensating controls should you consider?

Second signature – to authorize bank payments, salary transfers, purchase orders etc
Review by a Supervisor – the daily journal entries reviewed and signed by the employee’s supervisor
Exception reports – run reports which show all SOD exceptions and review/authorise. eg
- Report of changes to G/L
- Report of postings recorded on accruals accounts
- Report on pending items resulting from reconciliations
- Report on any adjustments made to a prior period
- Report of payments over a given threshold
- Report on changes performed to master data
- Etc…. you get the picture!
- Independent Review – a detailed review of all transactions where an employee has two roles giving SOD breaches, or…
- Random Review – spot checks periodically by an independent person

Change Control

Standard JDE E1 provides only limited change control of menu changes (through OMW) and no change control of security changes.

Use ALLOut Risk Management to enforce the proper testing for SOD and Compliance, and the automated control of User Access conflicts. Automate your security change approval process and allow our delivered reports to streamline your review controls and audit process.

ALLOut will also allow you to control role assignments – allowing an approval process, recording a ‘reason’ code and justification and alerting you if a role is assigned which would cause a breach. You then have the option to ‘hard stop’ that assignment or a simple ‘warning’ with the option to upload and record the mitigation for that breach. ALLOut provides over 80 sample mitigations as part of the latest version of its SODMaster spreadsheet.

Discover our industry leading expertise

Industry Insights

The Silver Lining for your Cloud Migration
July 20, 2023
No matter where you are on your cloud journey, building an optimal security environment and meeting compliance goals are primary obligations...

Anticipating Risk with System Access Controls in JD Edwards
June 12, 2023
Learn how risk controls supported by auditable accountability and ownership can keep you one step ahead of the risk and guarantee a robust system access architecture.
Watch On-Demand

Upcoming live events

No upcoming webinars found

Empower your security team

Save time, enhance risk visibility and be audit-ready with ALLOut Security for JD Edwards.

Request a Demo

These cookies allow us to recognise and count the number of visitors and see how visitors navigate our website. This helps us to improve the way our website works.

Cookie name	Default expiration time	Description
_ga	2 years	Used to distinguish users.
_gid	24 hours	Used to distinguish users.
_ga_<container-id>	2 years	Used to persist session state.
_gac_gb_<container-id>	90 days	Contains campaign related information. If you have linked your Google Analytics and Google Ads accounts, Google Ads website conversion tags will read this cookie unless you opt-out. Learn more.