OAUG SOX Panel Krista Ladd Oracle Applications Manager Silicon Image, Inc.

Slides:

Advertisements

Similar presentations

Ensuring Contract Compliance. Confidential 22 Office Depots strong executive level support and oversight Strong executive level support and oversight.

Advertisements

Enhanced XA Security CISTECH Security Solutions Belinda Daub, Senior Consultant Technical Services

This presentation contains forward-looking statements. Because such statements deal with future events and are based on KCS’s current expectations, they.

Case Study By: Susan Gulick Principal Consultant – Solutions Partners, Inc. May 18, 2005 Oracle Self-Service HR.

Entering, Approving, and Reconciling Payroll- Time and Labor APM

Solutions Summit 2014 Corporate Rollout Jonathan Haynes, CPA, CGMA and Kelly Darren, CPA.

Finance at Microsoft.

1 Archive Access Audit Keys to Effective Compliance Lifecycle Management.

Sarbanes-Oxley Compliance Process Automation

The TRUTH About SOX, Auditors & Oracle Applimation is the leading provider of Application Lifecycle Management solutions.

1 SAP Security and Controls Use of Security Compliance Tools to Detect and Prevent Security and Controls Violations.

Hyperion EPM Overview & Case Study.

Managing Segregation of Duties (SOD) in R3 Session Code: 808 Donnie Looper, Eastman Chemical Company Jasvir Gill, Virsa Systems.

COSO Framework A company should include IT in all five COSO components: –Control Environment –Risk Assessment –Control activities –Information and communication.

Cathy Cakebread Consultant NorCal OAUG January 13, 2011 Copyright © 2011 Cathy Cakebread 1 Oracle Receivables Fundamentals (and How it Fits into the “Big.

Shooting The Moving Target…… Internal Controls & Segregation of Duties (SOD) Session Code: 503 Jasvir Gill, Virsa Systems Donnie Looper, Eastman Chemical.

Chapter 4 IDENTIFYING RISKS AND CONTROLS IN BUSINESS PROCESSES.

SAP An Introduction October 2012.

Euseden INTERNAL AUDIT & ASSURANCE SERVICES.

Philippe LE TERTRE IS Governance Consultant  Founder and managing partner of VADEGIS (company specialized in Information System Management.

Best Practices for User Access Controls and Segregation of Duties Presented by: Jeffrey T. Hare, CPA CISA CIA ERP Seminars.

© 2011 Financial Operations Networks LLC AP Policies and Internal Controls for Running a Tight Ship Panel: Susan Tinkler-Muller Mike Iverson Rob Rogers.

© 2014 Protiviti Inc. An Equal Opportunity Employer. Confidential: This document is for your company’s internal use only and may not be copied nor distributed.

Best in Class Controls for AP The Institute of Financial Operations Indiana – Southern Illinois Chapter June 15, 2011 Sherry DePew.

Rev Jul-o6 Oracle Identity Management Automate Provisioning to Oracle Applications and Beyond Kenny Gilbert Director of Technology Services.

Continuous Monitoring for Enterprise Applications: Real Needs, Real Solutions. November 22, th Continuous Assurance and Auditing Symposium Newark,

Copyright © 2014 Pearson Education, Inc. 1 Enterprise systems integrate business activities across the organization and with business partners Chapter.

Implementation Issues of Sarbanes-Oxley CASE Presentation September 23, 2004 By Denise Farnan.

Subrecipient/Vendor Compliance Franklin County DJFS December 6, 2011.

Pass SOX security audits and Improve XA security CISTECH Security Solutions Belinda Daub, Senior Consultant Technical Services

1 © 2006 KBACE Technologies, Inc. Compensation Workbench and Oracle Advanced Benefits Strategies Presenters:Dave Neal Karen Varga

Best Practices for Implementing Third Party Software to Monitor SOD and User Access Controls Presented by: Jeffrey T. Hare, CPA CISA CIA ERP Seminars.

The NFIB estimates that over the lifetime of a business, 39% are profitable, 30% break even, and 30% lose money, with 1% falling in the "unable.

SME Security. Articulate the major security risks and legal compliance issues for an SME.Explain and justify approaches of investment on InfoSec controls,

Configuration GRC & Oracle Configuration Controls Governor May 2009 Oracle GRC Strategy – Barry Greenhut.

Ensuring the Integrity of Financial Information Ensuring the Integrity of Financial Information C H A P T E R 5.

Advanced Accounting Information Systems Day 18 IT Auditing Wrap-up / Control Frameworks Introduction October 5, 2009.

Reactive Companies Meet Sarbanes-Oxley Standards, Proactive Organizations Exceed Them! Therron Hofsetz Logical Apps, Inc.

Oracle Trade Management - Power Integrations' Implementation Approach Clark Stockard – Power Integrations Joanne Nettleblad – OAC Services, Inc Jill Vickers.

Financial Accounting Fundamentals John J. Wild Third Edition John J. Wild Third Edition Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights.

Absence Management System (AMS) Project & System Introduction County of Los Angeles October 2011.

Release Management at Xilinx Dilip Deshpande January 24 th, 2006.

Rev Jul-o6 UPK at Silicon Image Kenny Gilbert Director Technology Services Joe Kuntner Solbourne, Director of Consulting

Copyright © 2007 Pearson Education Canada 23-1 Chapter 23: Using Advanced Skills.

International Consulting Data Sheet. 1 Program Management for International Headquarters (IHQ) Why does a company go International ? Reach new markets/optimize.

SOX Compliance SOX Section 302 Certification

NorCalOAUG Training Day Sarbanes Oxley Act of 2002 Complaince initiative for all public companies –in fiscal reporting –audit of controls for manual tasks.

RESPONSES TO AUDIT OUTCOME BY AUDITOR GENERAL: 2014/15 Presented by: MRS SARAH MUVHULAWA 16 October

Rev Jul-o6 Realizing Value Quickly With GOP & APS Kenny Gilbert Director Technology Services Silicon Image, Inc.

Oracle Internal Controls Manager Krista Ladd. Silicon Image Confidential2 Silicon Image, Inc. Semiconductor company located in Sunnyvale – A leader in.

Microsoft Dynamics NAV: Tips and tricks for security methodologies Andy Snook and Nate Boettcher Fastpath, Inc.

Copyright © 2012 Pearson Education, Inc. Publishing as Prentice Hall. Chapter 7 1.

Security. Audit. Compliance. Mark Polino CPA.CITP.CFF, CGMA, Microsoft MVP Dynamics Credentialed Professional Naked and Afraid: Re-implementing.

Security. Audit. Compliance.

Building a Sound Security and Compliance Environment for Dynamics AX Frank Vukovits Dennis Christiansen Fastpath, Inc.

UW Financial Reporting Conference May 5, FOUR! AVOIDING THE ICFR ROUGH.

Internal Control and CASH BY JUDITH PAQUETTE. Learning Objectives  Learn the elements of Internal Control  Discuss the role of Internal Control in a.

Jabil Circuit: Monitoring Users with 95% Less Data Review with SAP® Access Violation Management by Greenlight Objectives Monitor segregation-of-duty (SoD)

Company Bundesdruckerei GmbH Headquarters Berlin Industry High tech

Eli Lilly and Company: Responding to Global Health Needs While Strengthening Compliance with SAP® Process Control Company Eli Lilly and Company Headquarters.

Security. Audit. Compliance.

Security Management: Successes and Failures

Alia Al-Nujaidi

Citrix: Proactively Addressing Enterprise Wide Access Compliance with SAP® Access Violation Management Company Citrix Systems Inc. Headquarters Ft. Lauderdale,

ACC 564Competitive Success/tutorialrank.com

OAUG SOX Panel Scott Tang, Project Manager

Compliance….GlobalSearch……WHAT?!?!

Xilinx: SOX slides for NorCal OAUG

SAP GRC EOH GRC Solutions Divisional divider Option 1.

Design Secure & Compliant Roles for Oracle ERP & HCM Cloud

Presentation transcript:

OAUG SOX Panel Krista Ladd Oracle Applications Manager Silicon Image, Inc.

Silicon Image Confidential2 Introduction Company = Silicon Image, Inc Size – 300+ employees – 2004 Revenue = $173.2 million – 2005 Revenue (first 3 quarters) = $150 Million Technology Services group supports users in Sunnyvale, Irvine, Taiwan and multiple Sales sites – IT Group = 7 employees / IS Group = 6 employees Application version = Modules = Financials, Distribution, Manufacturing and HR Consulting Company used to assist with the SOX compliance project = Horn Murdock Cole

Silicon Image Confidential3 Segregation of Duties How did you resolve issues of Segregation of Duties? – Utilized the Oracle ICM SOD tool. Entered the major violations and resolved before the audit review Continuously add violations as the auditors find issues and make suggestions Monitor on a monthly basis to make sure there are no new violations – Created alerts to monitor known violations and document as compensating controls

Silicon Image Confidential4 Key Challenges What were the most challenging moments in the SOD task? 1. Clearly defining ownership of SOD violations between Finance and IT 2. Understanding the Finance processes well enough to suggest compensating system controls and explaining fully to auditors 3. Understanding Oracle functionality (current and future) to suggest system controls Journal Approval Workflow Credit Memo Workflow Etc.

Silicon Image Confidential5 SOD Recommendations Violations – Run the reports often and share any new violations with Finance – Work with BPO’s to make sure not approving user access which is a SOD violation Controls – Have an IT person who understands Finance read through all of the Finance process documentation. Look for opportunities for the system to control risk Look for items that are documented as system controls or actions when that is not the case –This will reduces future auditor confusion as well as minimize IT involvement