Being a public listed company, the customer was looking for a solution in the area of control activity as a part of their commitment to comply with Sarbanes Oxley Act. Wipro is building a software tool for the customer, ground-up.

Client has 26 different applications and Segregation of Duty (SoD) in these applications is decentralized. Monitoring of authorization and Segregation of Duty (SoD) was a big challenge. The customer wanted to automate this by developing a customized tool. One of the challenges was to develop a tool that would help the auditor to audit applications within four hours even if new application was added to the system.

	Speed at which the tool can collect information from various applications ( within four hours)
	User friendly interface which can be easily used by the auditors (Internal / External)
	Compliance with Sarbanes Oxley Act

Wipro is developing tool which will enable customer to pull the data relating to SoD from multiple applications and perform gap analysis with respect to predefined SoD rules. Wipro consultants did a study to understand business rules, evaluate and perform gap analysis and recommend suitable changes to meet SOX compliance requirement. This required them to interact with customer’s internal team and its auditors (internal & external) to ensure that they are satisfied with solution design, the tool and output generated to meet SOX compliance requirement.

	Help in authorization to be mapped and subsequently users existing to be identified with authorization.
	Deliver gap reports with respect to individual user and his authorization within applications. (Example of SoD - Request Generator should not be Request Approver for a purchase of goods.)
	User friendly interface that be easily used by internal auditor, external auditor, business controllers, and top management (CxO).