Habit 6: Synergize – Implement SOD across ERP Solutions

Leen RoeleveldBest Practices

Large companies often arise from various acquisitions and mergers with other companies. Every acquired company typically has its own ERP environment, which cannot simply be replaced. That is why these companies often have multiple ERP systems. However, when processes are integrated, employees may have  access to multiple ERP systems to perform their duties. If we look at the applications that …


Habit 5: Seek First to Understand, then to be Understood – Investigate Conflicts and apply Mitigating Controls

Leen RoeleveldBest Practices

Evaluating Conflicts can be an overwhelming task. In a previous blog “First things first” is explained how to prioritize conflicts, to make it manageable. Now, we assume the list of conflicts can be meaningfully categorized, filtered and assigned to the corresponding role- and risk owners. From there, these owners can investigate the conflict and decide how to resolve the conflict. …

Think Win-Win

Habit 4: Think Win-Win – Utilize Existing Libraries for Conflict Identification

Leen RoeleveldBest Practices

Many companies have spent a considerable amount of effort to create the required business rules to identify conflicts. This task is complicated for different reasons: It requires an integrative and detailed knowledge of the full ERP application. Typically, knowledge of the ERP application is dispersed in different areas of expertise, with different people. To achieve consistency, strong coordination is required. …

Prioritize SOD Conflicts based on Risk Exposure

Habit 3: Put First Things First – Prioritize SOD Conflicts based on Risk Exposure

Leen RoeleveldBest Practices

A Segregation-of-Duties conflict can be defined as the situation where one ERP user has access to a combination of critical functions. This combination exposes the risk of fraud or error and eventually jeopardize the credibility of financial reports. Identifying SOD conflicts in an ERP system is a difficult task. It requires knowledge of all functions in the ERP system, combined …

Habit 2: Begin with the End in Mind Include Role Definition in Implementation Project

Habit 2: Begin with the End in Mind – Include Role Definition in Implementation Project

Leen RoeleveldBest Practices

The implementation period is the perfect time to start securing your ERP system against compliance risks. Examples of these risks are: unnecessary access to specific parts of the ERP system, undesired or not allowed combinations of role access (separation of duties), and unauthorized access to sensitive data. Designing the Access (authorization) model should be managed as an integral part of …

7Habits: Be Proactive

Habit 1: Be Proactive – Address Compliance Risks Already During Implementation

Leen RoeleveldBest Practices

Deploying one or more ERP systems, whether it be SAP, Oracle, Infor, Microsoft or any other provider, is a challenge. Implementation teams are working hard to reach the go-live date. Often, security and compliance safeguards are sacrificed to prevent undesired delay of the project. At the go-live date, managements main concern is if the production line or services will not …

7+1 Habits of Higly Effective Compliance

The 7+1 Habits of Highly Effective Compliance when deploying ERP Systems

Leen RoeleveldBest Practices

Sharing is caring. In the coming months, Dynaflow will share years of experience implementing Segregation of Duties in (large) ERP environments. For too long, compliance has not had any focus during the implementation of an ERP system. Too often, compliance related matters were only addressed after Go-Live. Implementing proper SoD controls will help to reduce the risk of fraud and …

PCB Piezotronics, Inc. selected Dynaflow Compliance for Infor ERP Syteline Compliance program

Leen RoeleveldNews

May 2nd, 2017 – Dynaflow, a recognized provider of Compliance Solutions announced that its Compliance Solution has been selected by PCB Piezotronics to support the process of Segregation of Duties Conflicts identification and mitigation in Infor ERP Syteline. PCB Piezotronics recently needed to implement a process to identify and mitigate Segregation of Duties conflicts in the currently deployed ERP application …

Dynaflow ranked as Leader in the Vendor Galaxy 2016 of Hypatia Research

Leen RoeleveldNews

Press release October 18th, 2016 – Hypatia Research, leading industry analyst and research organization, for the third time in a row ranks Dynaflow as a Leader in the Vendor Galaxy 2016-2017. Similar to the previous issues of the Enterprise GRC benchmark report in 2011 and 2014, Dynaflow Compliance was evaluated and ranked as leader in the Vendor Galaxy. Leslie Ament, …

Customer Story: Compliance As a Service for WEIR Minerals

Leen RoeleveldCustomer Stories

Read how WEIR Minerals avoided significant costs by deploying Compliance As a Service. “We didn’t have to spend a single dollar at hardware, which saved us not only money, but also the time needed to get new hardware installed”, adds IT-Manager Africa Region.