Data integrity and security is essential to providing the appropriate management information necessary to meet contractual commitments and internal best practices.
For clients that
utilize Costpoint as their nucleus set of applications, inherent to the application is the ability to generate the Security Audit Report. Identifying user application access permissions is often addressed at setup or during the hiring of a new employee however seldom visited as a part of overall best practices.
Most audit firms periodically request a review of a client's security and data integrity procedures and policies. This is even more prevalent where clients are contractually committed to implementing and demonstrating their compliance.
Several areas to look at include:
Have we established group environments and allocated permissions based upon groups?
Have we reviewed our password and access permissions at an individual level?
Do we have a formal process to address both terminated and new employees?
Is there an appropriate internal check and balance to review access permissions?
Are our internal processes compliant with contractual commitments?
With this release, T&E is now integrated into Costpoint rather than being offered as an add on application. The impact on existing customers is an area that Sand Solutions has been discussing with its' clients and recognizes each client has separate expectations.