Separation of Duties

GPTKB entity

Statements (31)
Predicate Object
gptkbp:instanceOf security principle
gptkbp:alsoKnownAs segregation of duties
SoD
gptkbp:appliesTo accounting
business management
information security
gptkbp:consequence increased risk of error
increased risk of fraud
regulatory non-compliance
gptkbp:example separating authorization and payment functions
separating development and operations in IT
separating record keeping and asset custody
https://www.w3.org/2000/01/rdf-schema#label Separation of Duties
gptkbp:involves assigning tasks to different people
dividing responsibilities
gptkbp:prevention single person having full control over critical process
gptkbp:purpose increase internal control
reduce risk of error
reduce risk of fraud
gptkbp:recommendation gptkb:ISO/IEC_27001
gptkb:Sarbanes-Oxley_Act
gptkb:COBIT_framework
gptkbp:relatedTo risk management
internal controls
least privilege
gptkbp:usedIn corporate governance
IT security
financial auditing
gptkbp:bfsParent gptkb:Access_Control_(AC)
gptkb:Least_Privilege_Principle
gptkbp:bfsLayer 7