You have two segregation of duties requirements:
1) a user can access either the supplier creation pages or the invoice pages, but not both.
2) a user can access either the invoice creation pages or the payment creation pages, but not both.
How must these requirements be met in Advanced Access Controls?
When validating imported data, the control manager at your client has identified an incorrect Risk-Control mapping; that is, Control A was mapped incorrectly to Risk B instead of Risk A. What needs to be done to fix the mapping?
How do you populate the Control Method field with a new custom value, such as a third-party application’?
During implementation, you created a Financial Reporting Compliance superuser and assigned this user the following roles:
The superuser logs in to Financial Reporting Compliance but is not able to create new Data Security Policies.
What is wrong?
When you view or edit a transaction incident, you may see extra columns that are not present in the business objects used in the control.
What three kinds of control logic or conditions can cause this? (Choose three.)
Your customer has a requirement to define an IT Compliance Manager job role with privileges to manage risks and controls, and the issues related to the risks and controls.
What are the duty roles that must be included in this job role to achieve this requirement?
Your client has configured separate roles for control assessor and control assessment reviewer. The control assessor has submitted his or her assessment. The control assessor realizes later that he or she has forgotten to attach a critical test evidence document to the assessment and needs to attach it now.
How can this be accomplished?
An assessor is trying to complete an operational assessment on a control for manual AP Invoice entry and is reviewing Prior Results.
Which statement is true about viewing Prior Results for this control?
Which two would need to happen in order for Advanced Access Controls (AAC) to automatically assign a status of “Closed” to an access incident? (Choose two.)
After adding a new control in Financial Reporting Compliance, the control owner clicks Submit. Users with the Control Reviewer and Control Approver roles exist.
What is the expected outcome?