Application Auditor for E-Business Suite
Protect and Empower
Application Auditor (AA) continuously identifies high-risk, non-compliant and privileged user transactions in Oracle E-Business Suite to align and enforce your controls with Governance, Risk and Compliance (GRC) guidelines. That protects your enterprise by mitigating risk and improving security. It also reduces audit costs and complexity. AA empowers auditors, so they work fast, without help from IT.
Detect, Prevent, Notify, and Review
AA enables you to Detect, Prevent, Notify, and Review unauthorized transactions within your Oracle database to ensure key Governance, Risk, and Compliance (GRC) controls are being followed. AA screens both front end application-based transactions and back end SQL statements that violate defined audit criteria.
Using Continuous Controls Monitoring (CCM), AA detects table level record-based transactions (DML) as well as database dictionary-based operations (DDL). In combination, you can safeguard business transactions, master data, and EBS configurations, and ensure software integrity.
When AA audits a transaction or statement that violates the criteria, you can investigate and remediate it immediately.
Track IT Support Activities
Use AA when you must allow application support staff to access production environments, and you need a compensating control to prove they only performed authorized activities. AA can create audit trails of support staff transactions.
Extend Productivity
In conjunction with Certify Application Auditor, you can approve authorized transactions systematically and attach appropriate documentation. External auditors will rely more on your organization’s controls, which may reduce audit costs.
See ProView for Application Auditor for additional productivity capabilities.
Usage
- Detect high-risk and privileged user transactions and record an audit trail for subsequent review.
- Differentiate between transactions made via business applications or database utilities like SQL*Plus.
- Identify Who, What, When and How, preserving context at time of transaction.
- Review before and after column values on a single audit record.
- Manage audit criteria, selectivity, and scope, as requirements change.
- Monitor business users, super users, and IT users who have broad access to applications and data.
- Audit changes to application setups and profile options.
- Document transaction approvals.
- Monitor data dictionary (DDL) changes in addition to data (DML) changes.
Key Features
- Over a hundred pre-configured table audits for business data, customer and supplier master data, and EBS setup configurations.
- Adapted to Oracle E-Business Suite user access technology.
- Well suited to audit data in any Oracle Database.
- Email alerts.
- Comprehensive reporting for internal and external auditors.
- Rapid Installation and implementation in a few days, not weeks and months.
- No additional hardware or Oracle software to purchase.
Results
- Increased audit integrity.
- Shortened audit cycles.
- Reduced IT effort to prepare for and support audits.
Screen Images
- Example email of an audited transaction alert.
Product Lines
“Synaptics has provisioned over 3000 Oracle EBS responsibilities and approved over 8000 resource requests using Absolute Technologies’ ProVision Responsibilities and Resources solutions. We saved an estimated $700,000 by [Read more…]
Rachel Chand
ERP Project Manager
Synaptics, Inc.
“Utilizing its sub ledger approach to sales order change tracking, BBBi gave us the ability to report point in time backlog. Absolute has provided unbelievable support in adapting the product to the unique requirements of our company.”
Fernando Esguerra
Senior IT Systems Architect
ATI Metals
"The BBBi software has been an extremely helpful tool in helping Charter parse our bookings data in a clear and concise manner helping us make intelligent business decisions backed up with accurate data. [Read more…]
Trent Pinter
Demand Planning Manager
Charter Steel, a division of Charter Manufacturing Company
“As a technology risk advisory consulting firm, Focal Point is always advising clients on the importance of a strong internal control structure – especially within their ERP environment. For our clients running Oracle EBS, we needed an automated solution to efficiently identify and report SoD violations without installing software directly in our client’s ERP environment.
Shuaib Shakoor
Partner
Focal Point Data Risk, LLC
“I’ve had the opportunity to use Absolute’s suite of products, at both Synaptics and Verifone. User access rights analysis and compliance were never easier than they are now using SoD VM and Certify. [Read more…]
Ranjini Rajiv
Manager, Internal Audit
VeriFone Systems, Inc.
