AAG Risk Ruleset for Microsoft D365

Developed by Saviynt

Overview

Governance, Risk and Access Compliance Management. Separation of Duties (SOD) and Sensitive Access risk rulesets identify user access risks to be monitored/mitigated or remediated by the business.

The Microsoft Dynamic 365 Finance and Operations ruleset includes 30+ risks across the business process areas of Human Capital Management, Purchase to Pay, Order to Cash, Acquire to Retire, Record to Report, Cash Management, Supply Chain Management, Broad Financials and Information Technology. The ruleset currently includes reviews of fine-grained entitlements at the Privileges level.

Features

Saviynt provides out-of-the-box rulesets and controls that build the foundation for reducing both potential and real SOD violations. It establishes SOD and sensitive access checks at a fine-grained level to avoid false positives and gain efficiencies during compliance reviews. This helps users prioritize remediation efforts and provides an effortless audit trail. Saviynt’s deep integration with each SaaS or onpremises application provides levels of detection not found in coarse-grained Governance, Risk, and Compliance (GRC) solutions. Saviynt’s Application Access Governanace (AAG) solution provides SOD and sensitive access rulesets in which the following are predefined:

  • Risks.
  • Functions associated with the risk.
  • Description of the risks.
  • Objects within a function.
  • Risk priority: Critical, high, medium, low.
  • Risk status: Active or inactive.
  • Risk type: SOD or critical access.
  • Risk Owners.
  • Business process.
  • Mapping of the functions associated with a business process.
App Type SoD Rulesets
Categories Enterprise Resource Planning (ERP)
Documentation View Docs