Which three are true about implementing a best practice solution for Financial Reporting Compliance? (Choose three.)
A. Large scope of project requires high effort for maintenance and administration.
B. It promotes rapid implementation and go-live.
C. It promotes go-live with minimal acceptance testing and user training.
D. It provides maximum return on investment with minimum project risk.
E. It promotes successful adoption and minimizes on-going cost of operation.
You are advising your client on design and configuration related to how access incident results will be viewed and managed. The client has provided a list of business requirements: Incident results can be viewed by Department Groups of investigators receive assigned incidents based on Department Must ensure systematically that no incident is unassigned to an investigator
Which three must be configured to support these requirements? (Choose three.)
A. Worklist assignment Result Investigator should be set to specific users.
B. Custom perspective for Department linked to the Results object with Required set to "No"
C. Custom perspective for Department linked to the Results object with Required set to "Yes"
D. Investigators are assigned job roles with custom Department perspective data roles attached. Other incident users receive job roles which only allow viewing of incidents.
E. Investigators are assigned job roles with custom Department perspective data roles attached for managing incidents. Other incident users are assigned job roles with custom Department perspective data roles attached for viewing only.
F. Worklist assignment Result Investigator should be set to "All Eligible Users"
When you view or edit a transaction incident, you may see extra columns that are not present in the
business objects used in the control.
What three kinds of control logic or conditions can cause this? (Choose three.)
A. Equals (when the same attribute is used on both sides of the condition)
B. Not in
C. Similar
D. Average Function
E. Between (when using a date attribute)
You build an access model with two entitlements. Each entitlement has four access points. The
entitlements do not have any access points in common.
How many access point combinations will be analyzed?
A. 20
B. 16
C. 8
D. 4
E. 25
You are working with the customer to gather Risk-Control data for the data import process. The customer has information in multiple formats. Which format should be used for importing the data?
A. .xlsx
B. .doc
C. .pdf
D. .xml
E. .txt
You have created security roles for the Procure-to-Pay (P2P) Control Manager for the EMEA region in your
client's organization. But, there are two problems with his or her security configuration.
Problem 1: This person should not receive notifications to complete control assessments, but currently he
or she does.
Problem 2: Also, although he or she has access to controls associated with EMEA, he or she is unable to
access controls created for individual regions within EMEA.
You have given him or her the following job role:
EMEA P2P Control Manager Job Role
-
Seeded Control Manager Duty Composite
-
Seeded Control Certification Assessor Duty Composite
-EMEA P2P Control Manager Data Security Policy
-Seeded Control Manager Data Security Policy
-
Perspective filter where Region Perspective "equals" EMEA
-
Perspective filter where Process Perspective "equals" P2P
Which two actions need to be taken to correct the problems? (Choose two.)
A. Remove Control Certification Assessor Composite from the EMEA P2P Control Manager job role.
B. Create EMEA P2P Control Certification Assessor Data Security Policy striped by both EMEA and P2P perspectives and assign to the job role.
C. Add to the EMEA P2P Control Manager Data Security Policy the seeded Control Certification Assessor Data Security Policy.
D. While defining data security policy, set the perspective value to EMEA including all child nodes of the EMEA region.
You have created a risk definition R100 and have created a new control C100 for this risk. No user has been assigned the Risk or Control reviewer and approver roles. What will be the state of R100 and C100 after submitting?
A. Both R100 and C100 will be in the "In Review" state.
B. Both R100 and C100 will be in the "Awaiting Approval" state.
C. Both R100 and C100 will be in the "Approved" state.
D. Both R100 and C100 will be in the "New" state.
You are implementing Advanced Access Controls for a client. You need to create a model that returns users who have been assigned a specified access point but excludes a specific operating unit. Which business object(s) do you need to add to your model to accomplish this objective?
A. Access Point and Fusion Access Condition
B. Access Entitlement
C. Access Point and User Business Object
D. Access Point
E. Fusion Access Condition
You are remediating access incidents in Advanced Access Controls (AAC), and have just completed the
remediation of a segregation of duties conflict for users in Fusion Security by removing the conflicting
access from the users.
What status do you set for the incident in AAC?
A. Resolved
B. Remediation
C. Remedy
D. Authorized
E. Accepted
Your client has asked you to define a transaction model to identify duplicate invoices based on Invoice
Numbers and Invoice Amounts.
Which two standard filters can be combined to accomplish this? (Choose two.)
A. The "Payables Invoice" object's "Supplier ID" does not equal itself.
B. The "Payables Invoice" object's "Invoice ID" is similar to the "Payables Invoice" object's "Invoice Number".
C. The "Payables Invoice" object's "Invoice Amount" is equal to itself.
D. The "Payables Invoice" object's "Invoice Number" is equal to the "Payables Invoice" object's "Invoice ID."
E. The "Payables Invoice" object's "Invoice Number" is equal to itself.