123ArticleOnline Logo
Welcome to 123ArticleOnline.com!
ALL >> Service >> View Article

Segregation Of Duties (sod) And Data Security

Profile Picture
By Author: Appsian
Total Articles: 29
Comment this article
Facebook ShareTwitter ShareGoogle+ ShareTwitter Share

In financial accounting systems, the Segregation of Duties is already well-known. Companies of all sizes are mindful that functions such as collecting checks and approving write-offs, depositing cash and reconciling bank statements, approving timesheets, custody of paychecks, and so on are not combined.
When regulations such as Sarbanes-Oxley (SOX) were implemented, the definition of Segregation of Duties (SoD) became more applicable to the IT organizations. For example, a very high percentage of SOX internal control problems arise from or depend on IT.
This forced IT firms to emphasize the Segregation of Duties, especially security, across all IT functions.
Defining Segregation of Duties
There are two fundamental purposes for the Segregation of Duties as it relates to security. The first is the avoidance of conflicts of interest, wrongful deeds, fraudulent acts, and errors. The second is to recognize control deficiencies that involve breaches of confidentiality, theft of information, and circumvention of security controls. Right Segregation of Duties is intended to ensure that people do not have overlapping responsibilities under any circumstances.
For example, the person responsible for developing and enforcing security must not be the same person responsible for checking security, performing security audits, or tracking and security reporting. The information security in-charge should also not report to the CIO. The explanation for this is that the CIO has a vested interest in believing that there are no cybersecurity problems with the rest of the workers. Anything that the tester discovers has the ability to be swept under the rug and not dealt with as easily as it should be. The best practice in the industry is that a member of your company should not be the person checking your cybersecurity. They need to be a neutral and unbiased third party.
Here are a few ways to achieve the correct Segregation of Duties:
Have the person in charge of the information security report to the audit committee chairman.
Use a third party to track security and perform surprise security audits.
Have the CISO accountable to the Board of Directors for the information security report.
Segregation of Duties: The Significance
There must be a distinction between operations, implementation, and testing of security and all controls to minimize the possibility of unauthorized activity or access to operating systems or data. Responsibilities must be delegated to individuals in such a way that safeguards and balances within the system are mandated, and the chance for unauthorized access and fraud is reduced.
Control methods related to the Segregation of Duties are subject to scrutiny by external auditors. Inadequate Segregation of Duties is cited by auditors as a material deficiency when they conclude that the risks are too high. Before this is completed, it is just a matter of time as it relates to data security. Proper Segregation of Duties, when implemented, result in distinct responsibilities for employees and ensure adequate data security for organizations. They also help enterprises meet mandatory obligation liabilities imposed by data privacy regulation.

More About the Author

Appsian One of the leading ERP data security,compliance,implementation solutions provider that gives organizations to complete control and visibility over their ERP data.

Total Views: 29Word Count: 480See All articles From Author

Add Comment

Service Articles

1. How Digital Printing Has Revolutionized The Printing Industry
Author: Fast Proof Press

2. Trasporto Mobili Brescia, Cosa è Bene Non Fare Per Evitare Problemi
Author: John Adam

3. Why Commercial Duct Cleaning Is An Important Part Of Building Maintenance?
Author: Bryson Kaleb

4. Industrial Evaporation Is The Process Of Removing Solvent
Author: SVAAR Process

5. Tips To Manage Your Health Care Business Successfully?
Author: Jane Leo

6. 6 Things To Look For In A Handyman In Central London
Author: LGC Group London – Property maintenance experts.

7. Take Perfect Virtual Meetings Using Ultimate Video Conferencing Software
Author: iFMeets

8. Need A Plumber In Torrance? Affordable Plumbing Services, Torrance From La Plumbing
Author: LA Plumbing Company

9. Need A Local Plumber? Try La Plumbing Emergency Plumbing Services
Author: LA Plumbing Company

10. Why Experts Prefer Hot Water Extraction During Carpet Cleaning?
Author: James Spencer

11. Why Being Physically Sound Is Vital For Security Guards
Author: James Spencer

12. Eliminate Language Barriers With Translation Services
Author: LA Translation

13. How A Complete Car Wash Is Done By Mobile Car Detailing Rockville Workers With Care?
Author: Jeff Smith

14. Mukesh Ambani Art Of Deal Making – Agilis Advisors
Author: agilisadvisors

15. Crucial Marketing Mistakes That Stop Sales Leads From Becoming Customers
Author: Think Design

Login To Account
Login Email:
Forgot Password?
New User?
Sign Up Newsletter
Email Address: