Policy Open Comment Period: 9.1.2 Segregation of Duties in Enterprise-wide Applications for Procurement and Tracking of Equipment
The Office of the Vice President, Chief Financial Officer, and Comptroller announces an open comment period for 9.1.2 Segregation of Duties in Enterprise-wide Applications for Procurement and Tracking of Equipment from August 29 to September 12, 2023. This policy mitigates the risks of non-segregation of duties by prohibiting certain role combinations for enterprise-wide systems. Access to enterprise-wide applications by an employee with a prohibited role combination is only allowed after obtaining advance approval for an exception request.
Please review the proposed changes and provide feedback on the comment blog to be considered before the new policy is published.
Highlights Include:
- Identification of the role combinations prohibited from access to enterprise applications.
- An exception request is required, including a risk mitigation plan and internal review procedures, before an employee with a prohibited role combination can access enterprise applications.
- Outlining the exception request submission process must be re-requested every two years.
The Exception Request Form is not yet ready; the link will be provided when the policy goes live.
Contact
If you have questions about the updates to the policy, please contact the CFO Business and Finance Policy Office at obfspolicies@uillinois.edu.
