ABSTRACT

From an audit perspective, effectively managing users is the key to comfort. After all, if users cannot access resources that do not pertain to them, the likelihood that those resources contain legitimate data increases dramatically. Also, having appropriate access controls implies that there is adequate segregation of duties, which gives the auditors comfort that fraud is effectively avoided.