Tuesday, April 17, 2018

ERP Risk Advisors at Collaborate 2018_Major Announcements

ERP Risk Advisors at Collaborate 2018_Major Announcements

ERP Risk Advisors will be presenting again this year at Collaborate 18 in Las Vegas, April 22-26. 

At Collaborate we will be announcing and discussing in more detail several major enhancements to our partner network and services as follows:

·       Audit Support as a Service for E-Business Suite and ERP Cloud – Complete data necessary to audit either application including configurations, a change management population, and SoD conflicts / Sensitive Access rule reporting

·       Content Unlimited for ERP Cloud – SoD and Sensitive Access rule subscription service for Oracle’s Risk Management Cloud

·       Training of project teams and auditors on Risks and Controls for ERP Cloud

·       E-Business Suite license review service through CaoSys’ CS*License solution

·       Support of Oracle’s Risk Management Cloud for ERP Cloud

·       Quarterly Risk Advisory webinar for ERP Cloud – focusing on governance, risk management, and control design issues throughout the application including bugs and enhancement requests

·       Several new Risk Advisory articles for ERP Cloud

If you are attending Collaborate, please visit us at Booth 1330 and plan on attending one or more of these sessions:

Monday 23rd - 11 a.m. - GRC SIG – Change Management Best Practices

Thursday – 26th (ADDITIONAL FEE) - 8:30 a.m. to 1:00 p.m. Security and Controls Foundational Concepts for Oracle E-Business Suite – (Jasmine C)

Monday, April 16, 2018

ERP Cloud: Certified Resources for Risk Management Cloud

ERP Cloud: Risk Management Cloud Certifications and Services


ERP Risk Advisors is pleased to announce a second of our resources is certified on the Financial Reporting Compliance (FRC) module of the Risk Management Cloud.  Donna Curtis was one of the first to attain certification on FRC and recently Sam Monarch has recently become certified as well. 
Many organizations have licensed the Risk Management Cloud and can take advantage of our accelerated implementation services including a two-week proof of concept engagement and six-week accelerated implementation of the FRC module.
ERP Risk Advisors is the premier niche consulting firm who focuses on Oracle applications, with an emphasis on ERP Cloud, E-Business Suite, and PeopleSoft.
Contact us at http://erpra.net/contactus.html for more information.
Donna Curtis bio:
  • ERP Risk Advisors Cloud Practice Lead
  • 20+ years as an Oracle EBS/GRC/Cloud consultant
  • Aided Oracle in the writing of the Oracle Financial Reporting Compliance Certification exam
  • Experience includes Big 4 consulting as well as small boutique firms
  • Certified Cloud Security Implementation Specialist, Certified FRC Implementation Specialist

Sam Monarch bio:
  • ERP Risk Advisors Oracle GRC Practice Lead
  • 29+ GRC Implementations covering all areas of Risk & Compliance
  • Expert Reviewer (SME) - Governance, Risk, and Compliance Handbook for Oracle Applications; Packt Publishing
  • Functional and Technical Leader in Oracle GRC, ERP Cloud Risk Management and CaoSys Product Suites
  • Experience includes Big 4 audit defense utilizing GRC technologies
  • Author of comprehensive IT Department SOPs, structured to optimize the business processes allowing clients to become both compliant and efficient.
  • Certified FRC Implementation Specialist
About ERP Risk Advisors:
ERP Risk Advisors is a leading provider of Risk Advisory services for organizations using Oracle Applications.  We provide consulting and training services related to compliance, security, risk management, and controls.  We also assist organizations in implementing GRC-related software from industry-leading companies.  ERP Risk Advisors is a proud VAR of CaoSys as well as several other leading software companies.

Friday, April 6, 2018

ERP Cloud: Two new risk advisors articles published and available to end users of ERP Cloud

ERP Cloud: Two new risk advisors articles published and available to end users of ERP Cloud

Thought Leadership Others Follow

ERP Risk Advisors is pleased to announce the publishing of two new articles for ERP Cloud in our Risk Advisory series.  Both of these articles are only available to end user organizations that are considering implementing,  are implementing, or have implemented Oracle's ERP Cloud software.

The topics are:
  • How Two ... Could Undermine Your Manual Journal Entry Controls
  • Critical Risks in Managing System...
If you are an end user organization, you can request these articles at:

Please keep ERP Risk Advisors in mind for any services you have related to ERP Cloud
Services and offerings – ERP Cloud
•Comprehensive Risk Assessment / Controls Design

•Role Assessment, Remediation and Design

•Reports & Analytics Development for Controls Monitoring

•Risk Management Cloud Implementation & Support:
  • Financial Reporting Compliance (FRC)
  • Advanced Financial Controls (AFC)
  • Advanced Access Controls (AAC)
Jeffrey T. Hare, CPA CIA CISA

Thursday, April 5, 2018

Oracle E-Business Suite Controls: Foundational Principles is just around the corner...

Oracle E-Business Suite Controls: Foundational Principles is just around the corner...

Can it be over soon???   I have been laboring over updating my E-Business Suite Application Security book for years and have one more chapter to write before it goes into final review...

It will be called "Oracle E-Business Suite Controls: Foundational Principles" and I hope, hope, hope to have it done by the end of April.

So... ready for it to be completed so it can be a resource for organizations running Oracle E-Business Suite.

The book has more than doubled in size an is approach 400 pages... It will likely have to be hard cover because of its size.  We'll see...

Then... it will be onward towards writing a similar book for ERP Cloud.

Tuesday, March 6, 2018

New Webinar and New LinkedIn Group focusing on GRC issues for Oracle’s ERP Cloud software

New Webinar and New LinkedIn Group focusing on GRC issues for Oracle’s ERP Cloud software

ERP Risk Advisors is excited to present our ERP Cloud Risk Advisory Series.   Join us for our first webinar in this series title - How One Configuration Could Undermine Your Manual Journal Entry Controls.  Join CEO, Jeffrey T. Hare, CPA CISA CIA and our ERP Cloud Practice Manager, Donna Curtis for this webinar.
This webinar will provide you with one CPE credit, but is only open to end user organizations. No anonymous emails, consulting firms, or audit firms will be allowed to participate.

Register here:

With this new Risk Advisory series, we are also excited to announce a new LinkedIn Group focused on GRC issues for Oracle’s ERP Cloud software.  Sign up for this group here:

Thursday, February 1, 2018

ERP Risk Advisors to present at OAUG's Risk Week

ERP Risk Advisors to present at OAUG's Risk Week

ERP Risk Advisors founder and CEO, Jeffrey T. Hare, CPA CIA CISA, will be presenting at OAUG's risk week.  His presentation is titled "ERP Risk Advisors and CaoSys: The Premier GRC Offering for Oracle E-Business Suite"

The presentation will include a discussion of common issues being identified by external and internal auditors and how the CaoSys suite of GRC-related applications can be used to address these needs.

The CaoSys GRC software suite is, by far, the leader in software in the E-Business Suite GRC space having been implemented at leading organizations throughout the world  CaoSys customer base includes the largest on-line retailer in the world with undoubtedly the largest install base, a high-tech manufacturer who is top 10 in the world in transaction volume for EBS, and many other leading Fortune 500 companies.

ERP Risk Advisors has developed content and specialized risk advisory services to supplement CaoSys' industry-leading software.  Our content library includes more than 1,000 rules - 600+ of the rules are sensitive access rules, providing visibility to risks throughout the applications.  This  includes nearly 400 rules of activities are expected to go through the Change Management process which allow you to easily evaluate if functions that should be managed by IT are isolated to those that understand and execute the change control expectations.

Our webinar will be held Friday, 09 February 2018 at 1 p.m. EST.

Join us at our Risk Week webinar hosted by OAUG by signing up here:

Tuesday, January 23, 2018

Welcome to 2018! Big news for ERP Risk Advisors!!!

Welcome to 2018!  Big news for ERP Risk Advisors!!!

With a new year brings exciting news at ERP Risk Advisors.  Happy New Year! We wish you the best for 2018.

First, we are pleased to welcome a new member to our team, Donna Curtis, who will be heading up our ERP Cloud practice after just recently leaving a big 4 firm as a Manager.  She brings over 20 years of experience in the IT industry as a leading talent in the Oracle EBS/Cloud and Advanced Controls space with full life cycle implementations on multiple projects (30+).  We are excited to have Donna on board.

Next, ERP Risk Advisors has launched partnerships with several new GRC software providers including SafePaas, Smart ERP, Oracle, Sentinel Software, and Fast Path.  We now offer full risk advisory services for E-Business Suite, ERP Cloud, and PeopleSoft.  We are THE niche firm in the Oracle GRC space and can provide high quality risk advisory services at a much lower price than the big 4 firms.

Additionally, we also have continued to deepen our most strategic relationship with CaoSys in the E-Business Suite space.  With Oracle de-supporting their Advanced Controls Suite, CaoSys has become the only fully integrated software for E-Business Suite and just so happens to produce excellent software.  We have collaborated with CaoSys to launch two new solutions – CS*License and CS*Lookback – which we know will be well-received by the market.  See enclosed datasheets for these offerings.  These solutions compliment an already superb suite of software that includes CS*Comply, CS*Audit, CS*Provisum, and CS*Rapid.  Find our more about CaoSys at www.CaoSys.com  

Finally, in 2017 I wrote three thought-leadership white papers called “The One Series” where I identified one configuration, one function, and one profile option that could undermine your manual Journal Entry controls.  I have published a new article with another configuration, AutoPost Criteria, that could potentially undermine your manual Journal Entry controls.  We are going to give end user organizations a one year head start before releasing this publicly.  You can access it only in the Internal Controls Repository (ICR) which is only open to end user organizations (or you can email admin@erpra.net and ask for it if you’d rather not sign up for the ICR).

If you haven’t read the other three articles, I’d invite you to download them from our homepage at www.erpra.net.   

We are exhibiting at Collaborate 18 in Las Vegas this April and invite you to stop by our booth and say hello. 

We are planning an update to my current book on E-Business Suite and will be expanding it to be called Oracle E-Business Suite Controls: Foundational Principles.  We also hope to have a book on ERP Cloud published before Collaborate called Oracle ERP Cloud Controls: Foundational Principles. 

If I can answer any questions or if ERP Risk Advisors can be of help in any way, please reach out to me at jhare@erpra.net or on my cell at 970-324-1450.  Please also consider connecting with me via Twitter, LinkedIn, and my blog, links are below.

Jeffrey T. Hare

Twitter: @jeffreythare
Blog: jeffreythare.blogspot.com
LinkedIn: linkedin.com/in/jeffreythare