Selamat datang di Scribd!

Roles and Responsibilities BSAs

Diunggah oleh

0% menganggap dokumen ini bermanfaat (0 suara)

28 tayangan1 halaman

Business Systems Analysts (BSAs) assist with various GRC-related tasks including analyzing changes to roles and risks, redesigning roles to address business needs and risks, understanding risks associated with access, categorizing new transactions, documenting new role designs, and assisting with role testing. They also help document technical mitigation controls and prepare specifications for new controls. BSAs are responsible for analyzing risks related to access, reviewing for segregation of duties issues, and defining and assisting with testing of mitigation controls. They may generate various reports on roles, users, authorizations, and mitigation controls as part of the GRC processes.

Deskripsi Asli:

R&R

Hak Cipta

Format Tersedia

DOCX, PDF, TXT atau baca online dari Scribd

Bagikan dokumen Ini

Bagikan atau Tanam Dokumen

Opsi Berbagi

Apakah menurut Anda dokumen ini bermanfaat?

Apakah konten ini tidak pantas?

Laporkan Dokumen Ini

Hak Cipta:

Format Tersedia

Unduh sebagai DOCX, PDF, TXT atau baca online dari Scribd

Tandai sebagai konten tidak pantas

0% menganggap dokumen ini bermanfaat (0 suara)

28 tayangan1 halaman

Roles and Responsibilities BSAs

Diunggah oleh

islamelshahat

Hak Cipta:

Format Tersedia

Unduh sebagai DOCX, PDF, TXT atau baca online dari Scribd

Tandai sebagai konten tidak pantas

Lompat ke Halaman

Anda di halaman 1dari 1

Cari di dalam dokumen

GRC Roles and Responsibilities – Business Systems Analysts (IS&T)

GRC Roles & Responsibilities – Business System Analysts

Business System Analysts (BSAs) will carry out the following tasks as part of their GRC-related responsibilities:
 Assist the Role Owner and Risk Owner with:
o Analysis of changes to risks due to changes in roles or user/role assignments
o Redesign of Roles in terms of business-relevant information and Single vs Composite role design
o Understanding the Risk – i.e. what the SAP access allows and if there are any additional technical
features which are being used , or can be used, to reduce / mitigate the risk – this includes
configuration settings, MIT enhancements, additional access security.
 When there are new “Z” transactions, the BSA will assist in categorizing to the closest standard SAP
action. The GRC Admin group will add these to the ruleset in the same place as that standard SAP action.
 Assist the BA to document the new / changed role design and communicate it to the SAP R/3 Security
Admin group. Potentially assist in the initial role testing.

 Assist the BA with documenting any technical Mitigation Controls

 Prepare mini-specs for any new mitigation controls which require technical work (configuration settings, ,
additional access security, new SAP control reports).
Responsibilities Reference

TASKS PROCESS & STEP

Analysis of Risks related to user access 1.2, 1.3, 2.1
User role redesign and test plan 1.4
Review for SOD issues from periodic ARA review 5 Q.2
Definition of Mitigation controls 2.2, 2.3
Assist with testing new or changed roles 1.7, 1.11

REPORTS PROCESS
05 Roles by Role Name 1
06 User to Role Relationship 1
07 Role Relationship with User - User Group 1
08 Users by User ID 1
09 Count Authorizations for Users 1
10 Action Usage by User Role and Profile 1
11 Mitigation Control Report 2
12 User Level 1, 2
13 User Level Simulation 1, 2

FORMS PROCESS & STEP

None None

WORKFLOW OR EMAIL-TRIGGERED ACTIONS PROCESS & STEP

None None

Anda mungkin juga menyukai

Roles and Responsibilities Role Owner
Dokumen2 halaman
Roles and Responsibilities Role Owner
kashifrasheed
Belum ada peringkat
Upgrade Preparation ERP
Dokumen8 halaman
Upgrade Preparation ERP
Jilani Shaik
Belum ada peringkat
Software Process
Dokumen30 halaman
Software Process
Abddulrahman
Belum ada peringkat
1J2 S4hana1909 BPD en Us
Dokumen18 halaman
1J2 S4hana1909 BPD en Us
Biji Roy
Belum ada peringkat
Checklists For SAP Administration Practical Guide
Dokumen17 halaman
Checklists For SAP Administration Practical Guide
gbla
Belum ada peringkat
GRC Guide Note
Dokumen4 halaman
GRC Guide Note
hossainmz
Belum ada peringkat
IS-TST-1101 Performance Testing
Dokumen12 halaman
IS-TST-1101 Performance Testing
alexnob
Belum ada peringkat
Barangay Sta. Agueda Transaction Management System
Dokumen4 halaman
Barangay Sta. Agueda Transaction Management System
Zychi YukiRei
Belum ada peringkat
Lockbox (1JT - US) : Test Script SAP S/4HANA - 02-09-19
Dokumen19 halaman
Lockbox (1JT - US) : Test Script SAP S/4HANA - 02-09-19
barath
Belum ada peringkat
Predictive Commitments Management
Dokumen13 halaman
Predictive Commitments Management
Kakarla achyuth
Belum ada peringkat
Chapter 2 Software Processes 1 30/10/2014
Dokumen70 halaman
Chapter 2 Software Processes 1 30/10/2014
عبدالرحمن النويصر
Belum ada peringkat
BRF Workflow PDF
Dokumen103 halaman
BRF Workflow PDF
Raman Rao
Belum ada peringkat
Designing SAP Application Security - Leveraging SAP
Dokumen12 halaman
Designing SAP Application Security - Leveraging SAP
T. Ly
Belum ada peringkat
Problem Management Process Document V1.9
Dokumen7 halaman
Problem Management Process Document V1.9
Kumar Shantanu
Belum ada peringkat
JAVA - Manage Code Quality With JLin
Dokumen57 halaman
JAVA - Manage Code Quality With JLin
Jorge
Belum ada peringkat
Sap GRC
Dokumen41 halaman
Sap GRC
Mukesh DS
100% (3)
Product Specifications Document
Dokumen16 halaman
Product Specifications Document
Hamza Ahmed
Belum ada peringkat
Software Personnel Management System
Dokumen15 halaman
Software Personnel Management System
Hari Prasath
Belum ada peringkat
EMS Project Report PDF
Dokumen43 halaman
EMS Project Report PDF
Rahul Chopade
Belum ada peringkat
2015 - Jan Meeting - SAP GRC Access Control Framework - Sangram Dash
Dokumen15 halaman
2015 - Jan Meeting - SAP GRC Access Control Framework - Sangram Dash
vgudi7
Belum ada peringkat
PDD - Generate Yearly Report
Dokumen15 halaman
PDD - Generate Yearly Report
nunoalbuquerque602
Belum ada peringkat
SAP GRC Process Control Training Content Schedule
Dokumen5 halaman
SAP GRC Process Control Training Content Schedule
lawal
Belum ada peringkat
Period-End Closing - Maintenance Orders (BF7 - SA) : Test Script SAP S/4HANA - 30-08-19
Dokumen11 halaman
Period-End Closing - Maintenance Orders (BF7 - SA) : Test Script SAP S/4HANA - 30-08-19
gobasha
Belum ada peringkat
Trade-Off Examples Inside Software Engineering and Computer Science
Dokumen6 halaman
Trade-Off Examples Inside Software Engineering and Computer Science
Pradip Pawar
Belum ada peringkat
Final HRMS Proposal
Dokumen19 halaman
Final HRMS Proposal
tutubiswal
75% (12)
Topics Covered: Chapter 2 Software Processes 1 30/10/2014 Chapter 2 Software Processes 2 30/10/2014
Dokumen15 halaman
Topics Covered: Chapter 2 Software Processes 1 30/10/2014 Chapter 2 Software Processes 2 30/10/2014
AKSHITA MISHRA
Belum ada peringkat
2011 702P00466 FFA Controler SM Yke Yke-N FRX LVX Uxc Uxc N Da0 PDF
Dokumen216 halaman
2011 702P00466 FFA Controler SM Yke Yke-N FRX LVX Uxc Uxc N Da0 PDF
Data Print
Belum ada peringkat
Amended Roles
Dokumen10 halaman
Amended Roles
ken auva
Belum ada peringkat
SOA - Declaración de Aplicabilidad
Dokumen7 halaman
SOA - Declaración de Aplicabilidad
Jhon Hegel Gutierrez
Belum ada peringkat
LoadRunner Basics
Dokumen74 halaman
LoadRunner Basics
madhugangula
Belum ada peringkat
SPM - Unit 6-1
Dokumen13 halaman
SPM - Unit 6-1
Ruhika Bulani
Belum ada peringkat
Process Models Explained
Dokumen8 halaman
Process Models Explained
Vishnu Bhanderi
Belum ada peringkat
The Project Documentation of Telephone Billing System Final
Dokumen43 halaman
The Project Documentation of Telephone Billing System Final
Rajesh Kumar
Belum ada peringkat
Project Title: Sistem Administrasi Laundry (SI ALAY)
Dokumen6 halaman
Project Title: Sistem Administrasi Laundry (SI ALAY)
Gebby Lavenia Nugrahani
Belum ada peringkat
Software Process Models Compared
Dokumen53 halaman
Software Process Models Compared
Nguyễn Minh Quân
Belum ada peringkat
SAP An Introduction
Dokumen31 halaman
SAP An Introduction
Vũ Đỗ
Belum ada peringkat
Identification of Key Process Areas For Improvement
Dokumen11 halaman
Identification of Key Process Areas For Improvement
for you
Belum ada peringkat
4+1 Model
Dokumen2 halaman
4+1 Model
Anil Relhan
Belum ada peringkat
Project Management Chapter 02: Planning, Scheduling, Risks
Dokumen8 halaman
Project Management Chapter 02: Planning, Scheduling, Risks
Patel Raj
Belum ada peringkat
Manual Servicio - Controler - SM - Yke - Yke-N - FRX - LVX - Uxc - Uxc - N PDF
Dokumen186 halaman
Manual Servicio - Controler - SM - Yke - Yke-N - FRX - LVX - Uxc - Uxc - N PDF
Data Print
Belum ada peringkat
SAP Production Check List
Dokumen14 halaman
SAP Production Check List
vivkepat
Belum ada peringkat
Curriculum SAP GRC Access Control - Consultant Training
Dokumen2 halaman
Curriculum SAP GRC Access Control - Consultant Training
lawal
Belum ada peringkat
Defect Tracking System
Dokumen21 halaman
Defect Tracking System
mughees10
50% (2)
NSS College Management System
Dokumen35 halaman
NSS College Management System
shiv sk
Belum ada peringkat
Online Examination System Synopsis
Dokumen16 halaman
Online Examination System Synopsis
Ashish keer
100% (1)
CS-736: Advanced Software Engineering: Software Quality Measurement: A Framework For Counting Problems and Defects
Dokumen21 halaman
CS-736: Advanced Software Engineering: Software Quality Measurement: A Framework For Counting Problems and Defects
raheela nasim
Belum ada peringkat
Software Testing (18IS62) Module-1
Dokumen19 halaman
Software Testing (18IS62) Module-1
Gangadhar Demannavar
Belum ada peringkat
qp1121 Quality Progress The Levels of Fix
Dokumen1 halaman
qp1121 Quality Progress The Levels of Fix
Cloud Redfield
Belum ada peringkat
Sysnopsis of E-Procurement
Dokumen12 halaman
Sysnopsis of E-Procurement
chaitan
Belum ada peringkat
Week3 12
Dokumen5 halaman
Week3 12
h00444687
Belum ada peringkat
02 Ch02 Software Process 1week3extended (2298)
Dokumen12 halaman
02 Ch02 Software Process 1week3extended (2298)
Salim Jr. Shallah
Belum ada peringkat
Functional Requirements Questionnaire
Dokumen11 halaman
Functional Requirements Questionnaire
Guttula Chaitanya
Belum ada peringkat
Literature House - SEPM
Dokumen36 halaman
Literature House - SEPM
hitmanjoshi45
Belum ada peringkat
Module 1 - Cloud On-Boarding & Environment MGMT
Dokumen60 halaman
Module 1 - Cloud On-Boarding & Environment MGMT
Girish Lampuse
Belum ada peringkat
Oracle OTM 19C Details
Dokumen14 halaman
Oracle OTM 19C Details
SJ SJ
Belum ada peringkat
1JT S4hana1909 BPD en Us
Dokumen19 halaman
1JT S4hana1909 BPD en Us
Biji Roy
Belum ada peringkat
Adm940 Flashcards
Dokumen24 halaman
Adm940 Flashcards
Deven Bhandarkar
Belum ada peringkat
Ex 4
Dokumen4 halaman
Ex 4
Jeel Marvaniya
Belum ada peringkat
Software Evolution and Feedback: Theory and Practice
Dari Everand
Software Evolution and Feedback: Theory and Practice
Nazim H. Madhavji
Belum ada peringkat
SAP Workflow Business Process Automation: Business Process Automation
Dari Everand
SAP Workflow Business Process Automation: Business Process Automation
Sudipta Malakar
Belum ada peringkat
Kali LinuxxxxxxxxxxxxRevealed 1st Edition
Dokumen341 halaman
Kali LinuxxxxxxxxxxxxRevealed 1st Edition
Walid Umar
Belum ada peringkat
SAP MM Stock Transport Order With Delivery Via Shipping
Dokumen13 halaman
SAP MM Stock Transport Order With Delivery Via Shipping
islamelshahat
Belum ada peringkat
General SAP Audit Checklist
Dokumen3 halaman
General SAP Audit Checklist
Abhinavkumar Patel
100% (1)
Linux Security: Structure, Permissions and Access
Dokumen2 halaman
Linux Security: Structure, Permissions and Access
islamelshahat
Belum ada peringkat
SAP Mm-Fi Integration sTEP BY Step Notes Ashraf: Corporate & Online Trainer
Dokumen31 halaman
SAP Mm-Fi Integration sTEP BY Step Notes Ashraf: Corporate & Online Trainer
Andreas T P Manurung
Belum ada peringkat
SAP MM Reports
Dokumen59 halaman
SAP MM Reports
saprajpal
95% (21)
SAP MM Stock Transport Order With Delivery Via Shipping
Dokumen13 halaman
SAP MM Stock Transport Order With Delivery Via Shipping
islamelshahat
Belum ada peringkat
Cybersecurity Roadmap
Dokumen1 halaman
Cybersecurity Roadmap
islamelshahat
Belum ada peringkat
SAP ECC Procurement Process
Dokumen154 halaman
SAP ECC Procurement Process
saifrahman1234
100% (2)
SAP ECC Procurement Process
Dokumen154 halaman
SAP ECC Procurement Process
saifrahman1234
100% (2)
SAP MM - Subcontracting Process
Dokumen11 halaman
SAP MM - Subcontracting Process
islamelshahat
Belum ada peringkat
SAP MM - Subcontracting Process
Dokumen11 halaman
SAP MM - Subcontracting Process
islamelshahat
Belum ada peringkat
SAP Mm-Fi Integration sTEP BY Step Notes Ashraf: Corporate & Online Trainer
Dokumen31 halaman
SAP Mm-Fi Integration sTEP BY Step Notes Ashraf: Corporate & Online Trainer
Andreas T P Manurung
Belum ada peringkat
???????? ????s ?? ???
Dokumen14 halaman
???????? ????s ?? ???
Shrouk Gamal
Belum ada peringkat
SAP MM Stock Transport Order With Delivery Via Shipping
Dokumen13 halaman
SAP MM Stock Transport Order With Delivery Via Shipping
islamelshahat
Belum ada peringkat
SAP Procure To Pay Scenarios
Dokumen90 halaman
SAP Procure To Pay Scenarios
islamelshahat
100% (1)
COBIT 2019 - RACI by Role - April 2020
Dokumen295 halaman
COBIT 2019 - RACI by Role - April 2020
gaston6711
100% (1)
SAP ECC Procurement Process
Dokumen154 halaman
SAP ECC Procurement Process
saifrahman1234
100% (2)
5278 13744 1 PB
Dokumen5 halaman
5278 13744 1 PB
AJith
Belum ada peringkat
GENERAL - COBIT - 2019 - FAQ - v1.1 110718
Dokumen4 halaman
GENERAL - COBIT - 2019 - FAQ - v1.1 110718
Hani Alsebakhi
Belum ada peringkat
SAP MM Reports
Dokumen59 halaman
SAP MM Reports
saprajpal
95% (21)
???????? ????s ?? ???
Dokumen14 halaman
???????? ????s ?? ???
Shrouk Gamal
Belum ada peringkat
1 4917998597737283741
Dokumen13 halaman
1 4917998597737283741
hamody662002
Belum ada peringkat
Internal Auditing's Role in Risk Management: The Iiarf White Paper / March 2011
Dokumen18 halaman
Internal Auditing's Role in Risk Management: The Iiarf White Paper / March 2011
islamelshahat
Belum ada peringkat
Course Catalog: January - December 2019
Dokumen68 halaman
Course Catalog: January - December 2019
islamelshahat
Belum ada peringkat
2020 Internal Audit Capabilities and Needs Survey Webinar Presentation
Dokumen25 halaman
2020 Internal Audit Capabilities and Needs Survey Webinar Presentation
islamelshahat
Belum ada peringkat
Lessons Learned Log Project Name: Project Manager:: ID Date Entered by Lesson Type Detail
Dokumen6 halaman
Lessons Learned Log Project Name: Project Manager:: ID Date Entered by Lesson Type Detail
islamelshahat
Belum ada peringkat
IS Governance and Operations With COBIT References
Dokumen67 halaman
IS Governance and Operations With COBIT References
islamelshahat
Belum ada peringkat
(IDM) Price List - July 2018
Dokumen5 halaman
(IDM) Price List - July 2018
islamelshahat
Belum ada peringkat
Designing and Implementing A Governance Framework Using 2019
Dokumen3 halaman
Designing and Implementing A Governance Framework Using 2019
islamelshahat
Belum ada peringkat
Sage X3 Debug Eclipse
Dokumen6 halaman
Sage X3 Debug Eclipse
Mohamed Ali
Belum ada peringkat
Untitled
Dokumen11 halaman
Untitled
Noro
Belum ada peringkat
Discrete Math Lab Manual
Dokumen158 halaman
Discrete Math Lab Manual
Mohammed Wahid
Belum ada peringkat
Ict2613 103 2 2019
Dokumen9 halaman
Ict2613 103 2 2019
mmasalek
Belum ada peringkat
PL-SQL Quiz
Dokumen13 halaman
PL-SQL Quiz
Shubham Goel
Belum ada peringkat
Application Lifecycle Management
Dokumen2 halaman
Application Lifecycle Management
M Chandraman ECE KIOT
Belum ada peringkat
AWSome Day Online 2020 - Module 2 Deck - Final
Dokumen55 halaman
AWSome Day Online 2020 - Module 2 Deck - Final
prbalu2k1
Belum ada peringkat
Tag Cyber Security Annual Cyber Security Handbook and Reference Guide Vol 3
Dokumen810 halaman
Tag Cyber Security Annual Cyber Security Handbook and Reference Guide Vol 3
rick schwartz
100% (2)
Project 1
Dokumen17 halaman
Project 1
neauto
0% (1)
Sample Schemas
Dokumen7 halaman
Sample Schemas
Mwase Sam
Belum ada peringkat
MIS of ITM University
Dokumen9 halaman
MIS of ITM University
paras ke ideas
Belum ada peringkat
Oracle Apps Interview Questions and Answers Part1
Dokumen6 halaman
Oracle Apps Interview Questions and Answers Part1
Balaji Shinde
Belum ada peringkat
Manage Business Partner Master Data
Dokumen26 halaman
Manage Business Partner Master Data
ghunghru
Belum ada peringkat
Orderentry Application: Uml Diagram For The Order Entry Application
Dokumen3 halaman
Orderentry Application: Uml Diagram For The Order Entry Application
SusantoPaul
Belum ada peringkat
Websphere Doctor 3 Tdma
Dokumen16 halaman
Websphere Doctor 3 Tdma
adnanbw
Belum ada peringkat
IT-402 - DBMS Que & Ans - 3
Dokumen6 halaman
IT-402 - DBMS Que & Ans - 3
Krish Patel
Belum ada peringkat
Requirements Specification: Last Week
Dokumen20 halaman
Requirements Specification: Last Week
adisu tsagaye
Belum ada peringkat
SAP BDC (Batch Data Communication) Tutorial
Dokumen7 halaman
SAP BDC (Batch Data Communication) Tutorial
Jhon Ed
Belum ada peringkat
Recap Slides - Agile Leadership
Dokumen46 halaman
Recap Slides - Agile Leadership
Lisario Conde
100% (1)
F5 Load Balancer - Interview Material PDF
Dokumen4 halaman
F5 Load Balancer - Interview Material PDF
Vijay Saini
Belum ada peringkat
Hadoop & Mapreduce: Bahga & Madisetti, © 2014 Book Website: WWW - Cloudcomputingbook.Info
Dokumen16 halaman
Hadoop & Mapreduce: Bahga & Madisetti, © 2014 Book Website: WWW - Cloudcomputingbook.Info
Champ Hillary
Belum ada peringkat
(All Variants) Intrusion Detection (Archive) - Ubuntu Forums
Dokumen62 halaman
(All Variants) Intrusion Detection (Archive) - Ubuntu Forums
ArinAliskie
Belum ada peringkat
Lazarus For The Web
Dokumen13 halaman
Lazarus For The Web
sk_2008
Belum ada peringkat
Mohamed Fawzy CV
Dokumen2 halaman
Mohamed Fawzy CV
api-3701650
Belum ada peringkat
Logens
Dokumen147 halaman
Logens
Muhamad Albani Saputra
Belum ada peringkat
SQL Injection Vulnerability
Dokumen5 halaman
SQL Injection Vulnerability
Meduzagyza
Belum ada peringkat
NTFS Structure: Excellent Reference
Dokumen64 halaman
NTFS Structure: Excellent Reference
Syeda Ashifa Ashrafi Papia
Belum ada peringkat
DAMA-DMBOK: Data Management Body of Knowledge: 2nd Edition - Management Information Systems
Dokumen6 halaman
DAMA-DMBOK: Data Management Body of Knowledge: 2nd Edition - Management Information Systems
gufaxite
0% (6)
3G Authentication and Key Agreement
Dokumen4 halaman
3G Authentication and Key Agreement
Ax AR
Belum ada peringkat
Chapter-07 - SQL
Dokumen29 halaman
Chapter-07 - SQL
Fathima
Belum ada peringkat