Segregation of Duties

Description

The segregation of duties (SoD) is a fundamental element of internal controls, defined to prevent error and fraud. Segregation of duties ensure that at least two individuals are responsible for the separate parts of any task.

For each user, the roles tab displays the list of roles assigned to the user and the possible risks. If you click on a role record, Soffid will show the entitlement details included the SoD rules with the risks detail. 

  1. Information Systems
  2. Roles
Custom attributes
  • Name: name of the segregation separation of duties
  • Information System: asset or application, from a functional point of view, on which the permissions are granted or revoked.
  • Type: type of segregation 
    • Trigger on all permissions: no user can be assigned the roles added to the role list.
    • Trigger on some permissions: if you select that option, you have to fill in the number of roles that can not match. Soffid will not allow you to assign to a user more than the number indicated of the roles added to the role list.
    • Query permissions matrix: Soffid displays a matrix which allows you to select the risk between pairs of roles, that roles are the roles added to the role list.
  • Risk: level of risk:
    • Low.
    • High.
    • Forbidden:  it is not allowed that one user has assigned the roles defined on the role list.
    • None: there are no risk.
  • Role List: list of roles to keep in mind on the segregation of duties.

Actions

Segregation of Duties query actions

Query

Allows you to query Segregation of Duties through different search systems, Basic and Advanced.

Add new

Allows you to add a new Segregation of Duties in the system. You can choose that option on the hamburger menu or clicking the add button (+).

To add a new Segregation of Duties it will be mandatory to fill in the required fields

Delete

Allows you to remove one or more Segregation of Duties by selecting one or more records and next clicking the button with the subtraction symbol (-).

To perform that action, Soffid will ask you for confirmation, you could confirm or cancel the operation.

Download CSV file

Allows you to download a csv file with the basic Segregation of Duties data.

Segregation of Duties detal actions

Apply changes

Allows you to save the data of a new role or to update the data of a specific role. To save the data it will be mandatory to fill in the required fields

Delete

Allows you to delete a Segregation of Duties. You can choose that option on the trash icon.

To perform that action, Soffid will ask you for confirmation, you could confirm or cancel the operation.

Undo

Allows you to quit without applying any changes.

Add new role Allows you to add a new role to Role list. You can add a role  clicking the add button (+), then Soffid will show a form to search an selectone or more roles. Finally you need to click the apply changes button and the roles will be added to the role list.
Delete role

Allows you to delete one or more roles from the role list. You can select one or more roles and then click button with the subtraction symbol (-). The roles will be deleted from the role list without Soffid ask for confirmation.