IRC

Identity Risk & Compliance

Create SoD matrix

Description

The segregation of duties (SoD) is a fundamental element of internal controls, defined to prevent error and fraud. Segregation of duties ensures that at least two individuals are responsible for the separate parts of any task.

You can find additional information by visiting the Segregation of Duties page.

Step-by-step

1. First, you must select the Create SoD matrix and click the OK button.

image-1676992791359.png

2. Once you click the OK button, Soffid will browse to the Segregation of Duties page in order to add a new  SoD

image-1677072359690.png

3. Finally you must save or Apply changes to save the SoD.

image-1677499985787.png

Standard attributes

Schedule weekly risk report

Description

The wizard allows you to schedule a new Weekly risk report. It is a document that provides an overview of the potential risks. The information in this document is related to the rules defined in the SoD. 

For more information, you can visit the Scheduled reports page.

Step-by-step

1. First, you must select the Schedule weekly risk report and click the OK button.

image-1676993208396.png

2. Then, Soffid will browse to the configure report page and allows you to configure the Weekly risk report.

image-1676994262683.png

3. Finally you must accept the changes, and the report will be displayed on the Scheduled reports page

image-1677500269887.png

Standard attributes

For each value of month, day, hour, minute, or day of the week:

 

Design a recertification campaign

Description

The wizard allows you to create a new recertification campaign. To be able to do this, Soffid has created two recertification policies, All permissions and Critical permissions.

For more information, you can visit the Recertification book.

 

Step-by-step

1. First, you must select the Design a recertification campaign and click the OK button.

image-1676994032726.png

2. Then Soffid will browse the New recertification campaign

image-1677073016957.png

3. In this step you must write a campaign name and select a template.

3.1. Complete access review

3.1.1. Write a name, select the Complete access review, and click the Next button

image-1677501842688.png

3.1.2. Select the group or groups to apply the campaign and click the Next button

image-1677502241149.png

3.1.3. Select the Information systems  to apply the campaign and click the Finish button

image-1677502349343.png

Standard attributes



Create advanced authorization rules

Description

This wizard allows you to browse the XACML Policy Management page to create new policies to add more complex and restricted rules to the authorizations.

For more information, you can visit the XACML page.

 

Screen overview

image-1676994068147.png


Screen overview