Update to all Infor/Baan users: Automated SOD Segregation of Duties scan available to your company

September 2007 - Special Inforum 2007 Conference Issue

How to achieve successful Segregation of Duties (SOD) validation & Process Automation with minimal cost & effort for your company

Your global organization, decentralized in various countries and counting several business applications, needs to implement adequate governance (SOX or not) to prevent fraud and to minimize business risks. Quite a challenge!  Where do you start?

• How do you validate thousands of user accesses frequently enough to prevent fraud?

• How do you quickly identify employees with Segregation of Duties (SOD) conflicts?

• How do you identify and resolve SOD conflicts, and most importantly prevent them?

• How do you identify SOD conflicts bridging different applications (Baan, Infinium, Mapics, SAP, etc)?

• How do you automate these scans to execute as often as needed to comply with auditors?

• How do you automate the conflicts resolution process to trigger the collaboration of the right people?

For all organizations operating Infor solutions (including all versions of Baan) and/or other ERP applications, the solution you need is called EZ-Compliance. Already used by key Infor accounts such as Bio-Rad, Komatsu, Coopervision, Herman Miller, Microchip, Immucor, Magna, etc... EZ-Compliance protects the integrity of companies’ data & transactions by providing precise visibility of who is able to access what across diverse applications and automatically identify SOD Conflicts. And with simulation capabilities, you can also prevent conflicts before they become reality! No more blitz to prepare for auditors as all required information is available real-time in a web-portal. A real saving of time, cost and resources applicable for all sizes companies.

Similar to a KPI Dashboard, EZ-Compliance SOD Chart will dynamically display all SOD sensitive areas and highlight where SOD conflicts have been found (and how many have been identified). A single click will then show you all conflicts per functional area, what employee is accessing which applications, by what role/menu, and if these conflicts have been mitigated. All of it dynamically updated by the EZ-Compliance scan engine.

EZ-Compliance Benefits - Customer testimonials

From Bio-Rad Laboratories (Baan 4 & ERP-5; 5,000 employees):

“In only 4 days, not only was EZ-Compliance installed and the training completed, all our Baan authorizations (>120,000 records) were loaded and scanned, resulting in the immediate identification of our SOD conflicts. A real eyes opener for us!  In addition, several hundreds of our Bio-Rad Business Controls and Conflict Rules were also loaded within the same 4 days!... Impressive“
Head of Internal Audit,  

From Herman Miller (Baan 4; 4,500 employees):

     (Customer Case Study available at http://www.ez-process.net/EZ-ProcessCD (EZ-Compliance section)

"After a comprehensive review, we have found that EZ-Compliance is the best tool on the market to address the dual roles of defining processes and embedding in them the business controls management that insure their accuracy and integrity”.
BPM/DEM Manager

"Having worked in public accounting for years, I understand very well what is required to become SOX certified and SOD compliant.  Operating EZ-Compliance at Herman Miller is not only enabling us to scan approximately 200,000 user accesses every week across nine systems (Baan, Mapics, Oracle, etc...), but allows us to immediately identify and mitigate any SOD conflicts that could constitute a business risk for our organization.  To process this volume of data on a weekly basis, we could not do it without EZ-Compliance.  Our auditors, both external (Big 4 firm) and internal, are impressed with our capability to perform SOD scans in so timely a manner.  In fact, because the scans are so timely they are considered by our auditors to be preventative".
Shared Services Controller

“In a manner of minutes we are able to scan thousands of users, roles, processes and applications! Not only we know precisely who is able to access what, we have direct visibility of any SOD conflicts for us to investigate, resolve and mitigate. In addition to saving us considerable effort, the EZ-Compliance solution has enhanced the accuracy of our conflicts identification, critical to maintain our SOX certification for years to come”.
Director Finance Shared Services

From Immucor (Baan 4; 550 employees):

“Unlike many software solutions that usually leave me with a mixed feeling when assessing them, EZ-Compliance stood out as one that delivers impressive results with limited setup. The ability to scan in only minutes thousands of authorizations records, from Baan or other corporate applications across several Immucor business units, enables us to perform the SOD scan as often as desired. It is clear for us at Immucor that EZ-compliance will save us time”.
Project Manager & Certified Six Sigma Black Belt

From Coopervision  (Baan ERP-5; 5,000 employees):

“I wish to tell you how impressed I am with your responsiveness to our suggestions and requests.  Normally there’s a lengthy release cycle required to realize any changes in a software package. You may live to regret being so accommodating because I will undoubtedly come up with more!".
Financial Systems Support Manager

Other EZ-Compliance/EZ-Process customers:

• Komatsu  (Baan 4; 35,000 employees):

• Magna  (Baan 4; 82,000 employees):

• Microchip  (Baan 4; 4,300 employees):

• Zebra Technologies  (Baan 4; 2,500 employees):

• Siemens  (SAP + Baan 4; 67,000 employees):

• Caterpillar / Solar Turbines  (Baan 4; 2,500 employees):

• Comcast  (Oracle; 55,000 employees):

• MDA Corporation  (Baan ERP-5; 3,000 employees):

• etc ...

Special Inforum Conference Offers & Bonuses

EZ-Process, to address all your BPM, Compliance and Workflow requirements

Available since 1999, the EZ-Process Suite has been selected by Baan and non-Baan customers such as Siemens, Comcast, Fujitsu, Solar Turbines, MDA Corporation, GKN, etc... seeking comprehensive features to support the following business requirements:

• Organization seeking to automate their administrative/operations processes :
  Replacing unreliable and time consuming tasks (such as paper-driven approvals, form-driven transactions, complex collaboration, ...) Workflow automation is applicable to all areas and transaction types in your company. Organizations that implemented ERP solutions are also good candidates as they are looking ways to (1) maximize efficiency of ERP transactions by automating them and (2) to bridge "human-driven" tasks within the ERP transaction flows. Workflow Execution is then the ideal “layer" to achieve process automation and EAI integration. Supports wireless/remote operations.
  
  
• Organization in need to achieve greater integration between diverse business/office applications:
  Similar to Workflow, the EZ-Process BPM and invocation capabilities provide a single web-based interface for employees to know the correct sequence of work (ensuring TQM and on-going education/training) and to be able to launch directly the appropriate application for each task. Acting as the EAI infrastructure, EZ-Process provides a business process-driven interface to employees while moving to the background the technical complexity of the ERP applications. 
  
  
• Organization seeking to implement Lean/Agile/ISO operations:
  In addition to comprehensive Business Process Modeling capabilities (compliant to Baan DEM or done in a stand-alone manner), EZ-Process also enables your organization to perform quantitative simulation & optimization analysis of your business processes to support all aspects of Lean and Agile operations. Finally, dynamic KPI ensures the automation of performance controls.
  
  
• Organization in need to secure & deploy their corporate knowledge:
  With employee turn-around rate increasing and re-organization layoffs more frequent, organizations feel the need to decentralize the business know-how (product & process related) and convert this knowledge into explicit documentation, able to be kept if the employee leaves and shared to increase productivity and reduce the learning curve of new staff. 
  
  
• Organization in need of leveraging the knowledge of one implementation to another one:
  Often seen in large organization with multi-sites multi-years implementation rollout, EZ-Process is well positioned to provide the upcoming sites a view of the chosen processes, facilitating the Change Mgmt requirements and enabling an early business validation of the foreseen implementation.
  
  
• Organization in need to deploy global processes to unify how operations are performed across the entire organization:
  Often a critical need of organizations that grew or are still growing by mergers and acquisitions, EZ-Process provides a centralized BPM infrastructure handling business processes, company wide documentation, business controls & risks management, role-driven employee performance support, transactions automation, etc... 
  
  
• Organization in need to undergo SOX/SOD certification/audit:
  Unlike most SOX projects, EZ-Compliance enables organizations to leverage BPM assets to (1) ease their SOX implementation, (2) to enhance their certification success by using dynamic Access Controls Mgmt and Separation of Duties SOD scan.
   

To test EZ-Process demos,
visit: EZ-Process Demo Center

To request a demo or more information,
visit: EZ-Process Demo/Information Request Form

 

www.EZ-Process.com