Enable Exception-based Access Violation Monitoring

In most organizations, a certain level of Segregation of Duty (SoD) violations must be accepted for the
business to function efficiently, and mitigating controls are implemented to address the remaining risk. Those controls, however, are typically manual in nature, and locating actual exceptions is like searching for a needle in a haystack. SAP Access Violation Management enables exception-based monitoring of transactions to identify actual violations, notifying business owners only when exceptions occur.

For example, a business user may need to maintain and issue payments to vendors. A mitigating control can be put in place to review a sample of vendors that have been created or changed compared to payments issued, to reduce the risk of internal fraud or employee error. With SAP Access Violation Management, you can automate the monitoring and correlation of transactions to identify instances where one business user maintained and paid the same vendor. This provides more comprehensive coverage than the incomplete approach of sample testing.

Once exceptions are identified, the solution tracks investigation and resolution of each incident until issues are resolved in a graphical, intuitive user interface designed for business users. By doing so, the application reduces manual control efforts and false positives.

SAP® Access Violation Management by Pathlock reduces manual mitigating controls for Segregation of Duties (SoD) and quantifies your financial exposure from identity and access management risk to see the dollar value impact on your business. You are able to centralize your access governance processes and enable exception-based monitoring so you can automate violation identification and review, streamline access-risk processes, and cut governance costs.