Three ways of documenting segregation of duties in Infor M3

There are three main paths to choose from. They all come with pros and cons, and they vary a lot in terms of cost, complexity and ease of use. 

Today many organizations experience an increased focus on IT security, for good reasons. Sadly, the threat doesn’t always come from the outside – there’s always a risk of fraud coming from the inside.

One way to mitigate risk of fraud is implementation of Segregation Of Duties (SOD). This ensures that the same employee cannot perform a full process, ending up with an unjustified transaction.

As an M3-customer, what are your options to approach SOD? 

1) Build your own SOD logic (Excel + BI Tools)

Building your own SOD analysis could feel a bit like building your own furniture. You get exactly what you want, you get to be creative, you’re always in control and it doesn’t break the bank!

The downside, of course, it that while you’re building your artisan table, everyone else is already eating. Making your own logic takes time to develop, test and roll out. And even then, there will always be the risk of missing something important.

Plus, each time there’s an update in M3, there’s no guaranteeing your own logic still works.

Recommended for: Smaller organizations with strong internal IT resources, limited budgets and the luxury of time – or companies that genuinely enjoy building everything from scratch.

2) Best-of-breed generic compliance systems

These are the Swiss army knives of compliance – they do everything, and they do it properly. You get enterprise-grade features, comprehensive audit trails and promises that your SOD will be in the clear across your entire IT landscape, not just M3.

They are, however, expensive, take months to implement and often require specialized knowledge to operate. They're also generic by nature, so you'll spend considerable time configuring them to understand M3's specific quirks and functions.

Good for: Large enterprises with complex compliance requirements across multiple systems and companies where comprehensive coverage is more important than cost.

• How compliant are you? Claim a free SOD analysis here

3) Fully automated segregation of duties by Vince

This SOD-solution is built specifically for Infor M3, so it’s obviously not for everyone.

But since it speaks M3 fluently, you’re looking at a solution that’s very easy to implement, cost-efficient and intuitive in use.

• Comes with pre-made SOD rules that work. Surrounding systems can be included in rule settings.
• True multitenant technology enabling startup within a week.
• Instant and automatic violation detection.
• Built in PDF-generated report for smooth auditions.
• Reasonable subscription model.

Perfect for: M3 companies that needs to get compliant, and don’t have the time or resources to build the logic themselves.

For more tips like these, go to our Insights blog