-
Separate role/duty for approving vendor bank account workflows
Right now, there's only a duty available to Maintain vendor master. This includes:
- Maintaining vendor details
- Create/Update/Delete Vendor bank accounts
- Submit Vendor bank account changes for approval
- Approve Vendor bank account changes
This is not SOx compliant! Approval should be moved to a separate duty and privilege for approval of vendor bank accounts. Auditors currently indicate this risk with a high severity level, as employees are able to fill in their private bank account details, without anyone noticing or checking these modifications.
You’re offline. This is a read only version of the page.
