At a large global bank, some 500 critical applications and corresponding supporting infrastructure were determined to be at risk of fraud. The client needed to design and build a transparent Segregation of Duties (SoD) violation management function that would be easily monitored and managed, capable of identifying and remediating violations swiftly and efficiently.
Protiviti designed an operating model to respond to violations in all management processes and sub-processes. We then organized a team of Protiviti and Robert Half resources in London, Chicago and Singapore to manage and run the function and helped identify and recruit a full-time client team to transition these responsibilities to internal fulfillment. The end result: a turn-key improved function to report violations and manage the remediation efforts ultimately leading to a reduced risk profile for the bank. We enhanced the bank’s SoD violations reporting, increased the transparency of SoD risks, and improved the audit trail.