Service

Application security and separation of duties

Improve your approach to application security through next-generation separation of duties.

Mick McGarry

Mick McGarry

Principal, GRC Technology, KPMG US

+1 214-840-8249

Engel Schmidt

Engel Schmidt

Senior Director, Security & Controls Solutions, KPMG US

+1 713 319 2000

To compete effectively in today’s global marketplace, companies must embrace digital information and emerging technologies. Yet, these advances can also make your organization more vulnerable to data access and security risks.

One important way to mitigate such risk and build stakeholder trust is separation of duties (SOD). SOD, a long-standing building block of sustainable risk management and internal controls, is a “checks-and-balances” approach that prevents a single person from controlling all aspects of a transaction. Without SOD controls, the organization would be highly vulnerable to employee fraud and error risks. 

As organizations have become more complex and more reliant on numerous loosely integrated applications, it has become far more difficult to administer effective SOD. SOD 3.0 is our next-generation SOD approach, designed to address risks that span front-, middle-, and back-office applications using predefined role definitions that are directly aligned with office business processes. These predefined roles are designed to work with application controls and address data security, user access, administration risk and compliance requirements.

Learn more in our brochure and contact us today to put our team to work for you.

Application security and separation of duties
Improve your approach to application security through next-generation separation of duties.