SAP SOX Compliance
What Is SOX Compliance?
The Sarbanes-Oxley Act (SOX) of 2002 requires financial transparency by U.S. public companies, ensuring their data is secure and accurate. Drafted by Congressmen Paul Sarbanes and Michael Oxley following several U.S. corporate and financial scandals, SOX compliance means having a formalized system for internal controls — one that provides full financial transparency.
In a blog post, the criticality of SAP governance, risk management, and compliance (GRC) for SOX compliance is explored. The author points out that two sections (Section 302 and Section 404) are the most important and relevant for SAP GRC and finance users.
What Is SOX Compliance?
The Sarbanes-Oxley Act (SOX) of 2002 requires financial transparency by U.S. public companies, ensuring their data is secure and accurate. Drafted by Congressmen Paul Sarbanes and Michael Oxley following several U.S. corporate and financial scandals, SOX compliance means having a formalized system for internal controls — one that provides full financial transparency.
In a blog post, the criticality of SAP governance, risk management, and compliance (GRC) for SOX compliance is explored. The author points out that two sections (Section 302 and Section 404) are the most important and relevant for SAP GRC and finance users.
An SAP SOX compliance checklist should address the following:
- Segregation of duties
- SAP GRC monitoring
- Safeguard SOX audit trails against emergency access
- Automate SAP audit reporting
Further Resources for SAPinsiders
Accounting & Finance Expands Its Influence. In this article, learn how UGI Utilities developed a strategic roadmap to better anticipate internal and external demands on the business — including regulations such as SOX. The utility shares how using BlackLine and its task functionality provides intuitive controls for SOX compliance.
Beyond SOX: Addressing non-financial risks through SAP configuration and sound supporting processes. Often, compliance is a focal point during SAP implementation to ensure compliance with financial reporting and regulations, such as SOX. However, there are optional SAP controls that could provide even more value to companies’ SAP system and supporting processes. In this session, Steve Biskie from RSM shares how to minimize and mitigate operational and strategic risks through SAP configuration. Understand who in the organization should be involved in recommending and validating control changes, and how to set up an appropriate cross-functional team to ensure decisions are sound and don’t introduce other risks.
Bridging the Cybersecurity Gap in IT General Controls (ITGC). Compliance with regulations like SOX often require a set of controls in place to mitigate risks to the integrity of financial reporting. Current ITGC testing performed by internal and external auditors is only focused on one slice of access risk. In this session, Brian Tremblay from Onapsis shares why it’s critical to understand the threats that exist to your SAP system beyond the current ITGC scope and how they relate to compliance with SOX.
A vendor that can help SAP customers with SOX compliance is Appsian Security. The provider offers a single platform for automating how users secure user identity, govern access, detect and prevent fraud, and demonstrate compliance with SOX, the General Data Protection Regulation, and more across critical business applications.
969 results
-
Live from SAPinsider Studio: Anurag Barua on Data Quality for the Digital Enterprise
Independent consultant and longtime SAP technologist Anurag Barua joins SAPinsider Studio at the BI-HANA 2016 event to discuss data quality for the digital enterprise, including the role of SAP Data Services and SAP Information Steward. Topics of this discussion include the material impact of poor data quality, how a transition to a digital core and…
-
Live from SAPinsider Studio: EV Technologies on the Evolution of BI
SAP Mentors Eric Vallo and Dallas Marks of EV Technologies join SAPinsider Studio at BI-HANA 2016 to discuss fundamental changes to enterprise business intelligence (BI). Topics of this discussion include tips on moving the analytics needle, data management strategy for the digital enterprise, and what a transition to “pervasive BI” means to businesses from a…
-
Live from SAPinsider Studio: Birgit Starmanns of SAP on SAP S/4HANA
Birgit Starmanns, SAP, Senior Director, Product Marketing, SAP S/4HANA, joins SAPinsider Studio at the Financials 2016 event in Las Vegas to discuss SAP S/4HANA, touching on Universal Journal, Central Finance, cloud vs. on-premise, and SAP S/4HANA Enterprise Management (the 1511 update) which broadens supported functionality beyond financials. This is an edited transcript of the discussion:…
-
Live from SAPinsider Studio: Carsten Hilker on Universal Journal
Carsten Hilker, SAP, Finance Solution Management, joins SAPinsider Studio at the 2016 FIN-GRC event to discuss SAP S/4HANA and the Universal Journal. This is an edited version of the transcript: Ken Murphy, SAPinsider: Hi this is Ken Murphy with SAPinsider. I am at the SAPinsider Financials 2016 in Las Vegas. Today I’m pleased to be…
-
Live from SAPinsider Studio: Karuna Mukherjea of SAP on SAP Cloud for Analytics for Planning
Karuna Mukherjea, Senior Director, Product Marketing, SAP Analytics, joins SAPinsider Studio to discuss SAP Cloud for Analytics for Planning. Topics covered include stories, events, collaboration, and bi-directional integration with SAP Business Planning & Consolidation. This is an edited version of the transcript. Ken Murphy, SAPinsider: Hi, this is Ken Murphy with SAPinsider. I’m at the…
-
Live from SAPinsider Studio: Ken Moir Discusses Standardizing Labeling for the Modern Supply Chain
Ken Moir, VP of Marketing at NiceLabel, joins the SAPinsider Studio at the SCM, CRM, and IoT 2016 event in Las Vegas to talk about labeling challenges and how NiceLabel and SAP work together to deliver a standardized labeling and marking process that mitigates risk and increases agility. Here is an edited transcript of the…
-
Live from SAPinsider Studio: AIG’s Cost Allocations in SAP
Sharath Muthyala, IT Lead, EPM, AIG, joins SAPinsider Studio to discuss cost allocations and how his company built a new CAS (cost allocation system) engine in SAP for a more granular, product-level view of allocation processes. This is an edited transcript of the discussion: Ken Murphy, SAPinsider: Hi, this is Ken Murphy with SAPinsider. I’m…
-
Live from SAPinsider Studio: GOJO Industries on Optimizing Production Planning and Knowledge Management
John Hooker of GOJO Industries, producer of Purell, joins SAPinsider Studio at the SCM 2016 event in Las Vegas to discuss the company’s recent move from their home-grown legacy system to SAP ECC 6.0 and the successful SAP add-on and optimization projects that have streamlined production and knowledge management. Here is an edited transcript of…
-
Live from SAPinsider Studio: Customer Messaging for the Digital Enterprise
Seth Ulinski, Senior Analyst, Technology Business Research, joins SAPinsider Studio at the SAPinsider SCM-CRM 2016 event to discuss customer-centricity, the evolving demands of customers, and re-thinking business strategy to put the customer first. This is a transcript of the discussion: Natalie Miller, SAPinsider: This is Natalie Miller of SAPinsider and we’re here at the SCM…
-
Live from SAPinsider Studio: Storyminers on the Importance of Design Experience
Mike Wittenstein, Lead Experience Designer, Storyminers, visits SAPinsider Studio at the SAPinsider 2016 SCM-CRM event in Las Vegas to discuss the importance of delivering a top-flight customer experience. This is an edited transcript of the discussion: Natalie Miller, SAPinsider: Hi, I’m Natalie Miller with SAPinsider, and we are here at the SCM, CRM, and IoT…
Related Vendors
Your request has been successfully sent