Audit Reporting of Security Controls in PeopleSoft Financials - PowerPoint PPT Presentation

1 / 22

About This Presentation

Title:

Audit Reporting of Security Controls in PeopleSoft Financials

Description:

9 years of PeopleSoft experience with Ohio State's 1,300 user HRMS and 2,400 ... Oracle9i Release 9.2.0.2.0 - 64bit. HP Hardware HP-UX 11.0 N Class ... – PowerPoint PPT presentation

Number of Views:221

Avg rating:3.0/5.0

Slides: 23

Provided by: isacacen

Category:

Tags: peoplesoft | audit | controls | financials | hpux | reporting | security

Transcript and Presenter's Notes

Title: Audit Reporting of Security Controls in PeopleSoft Financials

1
Audit Reporting of Security Controls in
PeopleSoft Financials

Central Ohio Chapter
Information Systems Audit and Control Association
April 14, 2005

2
Your Presenters
Brian OBrien Manager - Data Security 9 years of
PeopleSoft experience with Ohio States 1,300
user HRMS and 2,400 user Financials environments
Pat OConnor Senior Systems Engineer Ohio States
leading technical security expert, has 7 years of
PeopleSoft experience, ranging from configuration
management and control to security administration
3
Overview

PeopleSoft Controls
User Accounts
System Settings
System Architecture
Security Audit Review

4
Database Environment

Oracle9i Release 9.2.0.2.0 - 64bit
HP Hardware HP-UX 11.0 N Class
Over 50 PeopleSoft Databases

5
Ohio State and PeopleSoft
5
5
6
PeopleSoft Controls

Users
Roles
Permission Lists
Pages
Signon Times
Preferences

6
6
7
System Controls

Password Controls
Inactivity Timeouts

7
7
8
System Architecture
User (browser) ?
Web Server ? App
Server ?
Data Base Server
8
8
9
Audit Discussion Points

Administrative Access
Password Controls
Audit Trails
Terminated Users
Default PeopleSoft Accounts
Correction Mode Access

9
9
10
Administrative Access

Discussion Point
Access to high level administrative pages is
restricted to appropriate personnel. Privileged
access includes
Application Designer
Maintain Security
Tree Manager

11
Password Controls

Discussion Point
PeopleSoft password controls are turned on and
configured for the following
Password expiration
Minimum length
Required special characters

12
Password Controls
13
Password Caveat

Problem
PeopleSofts password encryption algorithm is not
strong.
Solution
PSOPRDEFN_VW
External Authentication

14
Audit Trails

Discussion Point
PeopleSoft Audit Trails are in place for
sensitive
Activities.
Solution
PeopleSoft Audit
Record level
Field level
Oracle Audit

15
Audit Trails
16
Audit Trails
17
Terminated Users

Discussion Point
The security administrator is notified of
employees that have changed roles and
responsibilities, transferred or been
terminated.

18
Default PeopleSoft Accounts

Discussion Point
The default PeopleSoft user profiles and
permission lists have been removed or deactivated.

19
Correction Mode Access

Discussion Point
Use of correction authorized action in PeopleSoft
is restricted.

20
Correction Mode Cleanup
Totals
Removed
21
QUESTIONS?
22
Contacts

Brian OBrien
Manager, Data Security
Office of Information Technology
The Ohio State University
E-mail obrien.9_at_osu.edu
Patrick OConnor
Sr. Systems Engineer
Office of Information Technology
The Ohio State University
E-mail oconnor.33_at_osu.edu

Write a Comment

User Comments (0)

About PowerShow.com

Recommended Relevance Latest Highest Rated Most Viewed

Sort by:

Related More from user

CrystalGraphics Presentations

Introducing-PowerShowcom PowerPoint PPT Presentation

Introducing-PowerShowcom - Introducing-PowerShowcom (Without Music)

CrystalGraphics 3D Character Slides for PowerPoint PowerPoint PPT Presentation

CrystalGraphics 3D Character Slides for PowerPoint - CrystalGraphics 3D Character Slides for PowerPoint

Chart and Diagram Slides for PowerPoint PowerPoint PPT Presentation

Chart and Diagram Slides for PowerPoint - Beautifully designed chart and diagram s for PowerPoint with visually stunning graphics and animation effects. Our new CrystalGraphics Chart and Diagram Slides for PowerPoint is a collection of over 1000 impressively designed data-driven chart and editable diagram s guaranteed to impress any audience. They are all artistically enhanced with visually stunning color, shadow and lighting effects. Many of them are also animated. And they’re ready for you to use in your PowerPoint presentations the moment you need them. – PowerPoint PPT presentation

Related Presentations

Achieving Payroll Best Practices Through PeopleSoft Payroll PowerPoint PPT Presentation

Achieving Payroll Best Practices Through PeopleSoft Payroll - ... deductions, third party vendor interface coordination, and tax withholding ... core Payroll process definitions, table maintenance, security, limits of ... | PowerPoint PPT presentation | free to view

Extending Financial Reporting out of Oracle Financials Using Hyperion Essbase PowerPoint PPT Presentation

Extending Financial Reporting out of Oracle Financials Using Hyperion Essbase - Extending Financial Reporting out of Oracle Financials Using Hyperion Essbase. George Cooper ... George Cooper. Manager, BI Northern California Practice. Phone ... | PowerPoint PPT presentation | free to view

Advanced Reporting Techniques for PeopleSoft Enterprise PowerPoint PPT Presentation

Advanced Reporting Techniques for PeopleSoft Enterprise - PeopleSoft Tools and Technology Experts. PeopleTools Developers, Product Strategists since 1994 ... Puts user interface on Context. Snap-on to Excel ... | PowerPoint PPT presentation | free to view

Getting Started on a PeopleSoft 7'x Audit PowerPoint PPT Presentation

Getting Started on a PeopleSoft 7'x Audit - UNIX = Sun Solaris 2.7. DBMS = Oracle 8.1.6.3. Plans to upgrade to PeopleSoft Version 8. Currently implementing Oracle Financials 11i. ... | PowerPoint PPT presentation | free to view

J'D' Edwards SOX Security For the Greater Philadelphia Peoplesoft Regional User Group PowerPoint PPT Presentation

J'D' Edwards SOX Security For the Greater Philadelphia Peoplesoft Regional User Group - ... actively worked on and lead global JDE implementations for major pharmaceutical companies, real estate, construction, consumer goods, publishers, ... | PowerPoint PPT presentation | free to view

Vormetric Data Security: Complying with PCI DSS Encryption Rules PowerPoint PPT Presentation

Vormetric Data Security: Complying with PCI DSS Encryption Rules - Download the whitepaper 'Vormetric Data Security: Complying with PCI DSS Encryption Rules from http://www.vormetric.com/pci82 This whitepaper outlines how Vormetric addresses PCI DSS compliance; it addresses Vormetric's position relative to the Payment Card Industry Security Standards Council's (PCI SSC) guidance on point-to-point encryption solutions. The whitepaper also features case studies of PCI DSS regulated companies leveraging Vormetric for PCI DSS compliance and maps PCI DSS requirements to Vormetric Data Security capabilities. Vormetric Data Security helps organizations meet PCI DSS compliance demands with a transparent data security approach for diverse IT environments that requires minimal administrative support and helps companies to meet diverse data protection needs through an easy to manage solution. For more information, join: http://www.facebook.com/VormetricInc Follow: https://twitter.com/Vormetric Stay tuned to: http://www.youtube.com/user/VormetricInc | PowerPoint PPT presentation | free to view

Effective Cybersecurity Practices for Higher Education PowerPoint PPT Presentation

Effective Cybersecurity Practices for Higher Education - The National Cyber Security Alliance is a unique partnership among the Federal ... The relationship entitles Institutional Members to redistribute CIS benchmarks ... | PowerPoint PPT presentation | free to view

Oracle%20Database%2011g%20Lock%20Down%20Your%20Data PowerPoint PPT Presentation

Oracle%20Database%2011g%20Lock%20Down%20Your%20Data - See OLS Best Practices for Government and Defense TWP on OTN. Oracle Label Security ... Laptops stolen. Backups lost. Data. Written. To Disk. Transparently ... | PowerPoint PPT presentation | free to view

The Auditor PowerPoint PPT Presentation

The Auditor - Controls can be preventative (most effective) or detective ... Internal Audit's role in coordinating Federal or State Agency audits ... | PowerPoint PPT presentation | free to view

Leveraging Information Overload for Effective Security Management PowerPoint PPT Presentation

Leveraging Information Overload for Effective Security Management - McAfee VirusScan. McAfee ePolicy Orchestrator. Trend Micro ... McAfee CyberCop ASaP. McAfee Foundstone. Qualys QualysGuard. Open Source Software Nessus ... | PowerPoint PPT presentation | free to view

The Role of XBRL in Internal Reporting: XBRL GL/XBRL FR Conceptual Overview PowerPoint PPT Presentation

The Role of XBRL in Internal Reporting: XBRL GL/XBRL FR Conceptual Overview - The Role of XBRL in Internal Reporting: XBRL GL/XBRL FR Conceptual Overview Eric E. Cohen eric.e.cohen@us.pwc.com 11th XBRL International Conference | PowerPoint PPT presentation | free to view

Technology PowerPoint PPT Presentation

Technology - Past President of the Los Angeles Chapter of the Information Systems Audit and ... Also known as General Controls Review (GCR) or General Network Controls (GNC) ... | PowerPoint PPT presentation | free to view

Confidential Data PowerPoint PPT Presentation

Confidential Data - Mostly Technical but some Functional. Primary: HRMS / Payroll / Benefits ... Negotiable! Management Application Security. Back Office Application Security ... | PowerPoint PPT presentation | free to view

Integration of Security Information and Event Management (SIEM) and Identity and Access Management (IAM). PowerPoint PPT Presentation

Integration of Security Information and Event Management (SIEM) and Identity and Access Management (IAM). - Integration of Security Information and Event Management SIEM and Identity and Access Management IAM | PowerPoint PPT presentation | free to view

Easing the Inquiry, Consolidation and Reporting Processes PowerPoint PPT Presentation

Easing the Inquiry, Consolidation and Reporting Processes - ... Jc Js Js J{ J{ J J J J RB RB RJ RR RR Rc Rs R{ R R R R R R R R R ... c c c c c c c c c kZ kZkc kckk ks k k k k k k k k k sZsc scsks s {k{s ... | PowerPoint PPT presentation | free to view

Integration of Security Information and Event Management (SIEM) and Identity and Access Management (IAM). PowerPoint PPT Presentation

Integration of Security Information and Event Management (SIEM) and Identity and Access Management (IAM). - Integration of Security Information and Event Management (SIEM) and Identity and Access Management (IAM). Reed Harrison CTO, Security & Compliance Solutions | PowerPoint PPT presentation | free to view

The Role of XBRL in Internal Reporting: XBRL GLXBRL FR Conceptual Overview PowerPoint PPT Presentation

The Role of XBRL in Internal Reporting: XBRL GLXBRL FR Conceptual Overview - Daily cash/AR/AP. Performance. Primarily for internal use only. Preparation for external use ... http://www.sec.gov/news/speech/spch523.htm. Do You Remember? ... | PowerPoint PPT presentation | free to view

ProChek64 Leading the way with Security and Control PowerPoint PPT Presentation

ProChek64 Leading the way with Security and Control - create checks and by ... is programmed to print your checks and overflow pages exactly how YOU ... will also format your checks to ensure that they are ... | PowerPoint PPT presentation | free to view

Security of Shared Data in Large Systems PowerPoint PPT Presentation

Security of Shared Data in Large Systems - Aetna Travel Insurance. Enforcement: Application server. Policy applied: US (NY) ... Cheap enough. Development effort, learning curve, admin. Scalable ... | PowerPoint PPT presentation | free to view

Oracle Financials 11.5.10 PowerPoint PPT Presentation

Oracle Financials 11.5.10 - Process Sub process Procedure Instruction Online Help ... Currency rates manager. Improved UI for transaction entry and management ... | PowerPoint PPT presentation | free to view

Components of an Internal Controls Enforcer PowerPoint PPT Presentation

Components of an Internal Controls Enforcer - Sub Business Process. Sub Business Process. Sub Business Process. Process Accounts Payable ... Financial element and business process prioritization. Page 13 ... | PowerPoint PPT presentation | free to view

Audit Services PowerPoint PPT Presentation

Audit Services - 173,000 social security numbers compromised ... Ophthalmology. Psychology. Brown Cancer Center. Family and Community Medicine Clinics ... | PowerPoint PPT presentation | free to view

Securing IT Systems with the PowerPoint PPT Presentation

Securing IT Systems with the - Why has it been so difficult to proliferate good security practice? ... Need to develop and proliferate detailed technical best practices ... | PowerPoint PPT presentation | free to view

Security of Shared Data in Large Systems PowerPoint PPT Presentation

Security of Shared Data in Large Systems - SQL security seems mature, but ... Here are some neatly delineated needs ... and intelligence analysts (unfortunately, not Defense Secretaries and presidents) ... | PowerPoint PPT presentation | free to view

Oracle Security Solutions Identity Management and Database Security 13, September 2006 Sofia, Bulgar PowerPoint PPT Presentation

Oracle Security Solutions Identity Management and Database Security 13, September 2006 Sofia, Bulgar - Oracle Security Solutions Identity Management and Database Security 13, September 2006 Sofia, Bulgar | PowerPoint PPT presentation | free to view

The University of Texas System The Fifth Conference Effective Compliance Systems in Higher Education PowerPoint PPT Presentation

The University of Texas System The Fifth Conference Effective Compliance Systems in Higher Education - NCAA Directors Cups 12. Click to edit Master text styles. Second level. Third level. Fourth level ... Reporting to Board of Trustees ... | PowerPoint PPT presentation | free to view

Overview of Internal Controls PowerPoint PPT Presentation

Overview of Internal Controls - Overview of Internal Controls Internal control is a process designed to provide reasonable assurance regarding the achievement of effectiveness and efficiency of ... | PowerPoint PPT presentation | free to view