SY0-501 · Question #124
SY0-501 Question #124: Real Exam Question with Answer & Explanation
The correct answer is A: New Vendor Entry - Required Role: Accounts Payable Clerk New Vendor Approval - Required Role: Accounts Payable Manager Vendor Payment Entry - Required Role: Accounts Payable Clerk Vendor Payment Approval - Required Role: Accounts Payable Manager. Option A correctly implements separation of duties (SoD) by assigning data entry tasks (New Vendor Entry, Vendor Payment Entry) to the Accounts Payable Clerk and approval/authorization tasks (New Vendor Approval, Vendor Payment Approval) to the Accounts Payable Manager. This two-
Question
An organization's internal auditor discovers that large sums of money have recently been paid to a vendor that management does not recognize. The IT security department is asked to investigate the organization's ERP system to determine how the accounts payable module has been used to make these vendor payments. The IT security department finds the following security configuration for the accounts payable module: Which of the following changes to the security configuration of the accounts payable module would BEST mitigate this risk? A. B. C. D.
Options
- ANew Vendor Entry - Required Role: Accounts Payable Clerk New Vendor Approval - Required Role: Accounts Payable Manager Vendor Payment Entry - Required Role: Accounts Payable Clerk Vendor Payment Approval - Required Role: Accounts Payable Manager
- BNew Vendor Entry - Required Role: Accounts Payable Manager New Vendor Approval - Required Role: Accounts Payable Manager Vendor Payment Entry - Required Role: Accounts Payable Manager Vendor Payment Approval - Required Role: Accounts Payable Manager
- CNew Vendor Entry - Required Role: Accounts Payable Clerk New Vendor Approval - Required Role: Accounts Payable Clerk Vendor Payment Entry - Required Role: Accounts Payable Clerk Vendor Payment Approval - Required Role: Accounts Payable Manager
- DNew Vendor Entry - Required Role: Accounts Payable Clerk New Vendor Approval - Required Role: Accounts Payable Manager Vendor Payment Entry - Required Role: Accounts Payable Manager Vendor Payment Approval - Required Role: Accounts Payable Clerk
Explanation
Option A correctly implements separation of duties (SoD) by assigning data entry tasks (New Vendor Entry, Vendor Payment Entry) to the Accounts Payable Clerk and approval/authorization tasks (New Vendor Approval, Vendor Payment Approval) to the Accounts Payable Manager. This two-level control ensures that no single individual can both create a fraudulent vendor and authorize payment to that vendor, directly mitigating the risk of unauthorized vendor payments. The segregation between entry and approval roles at each stage creates a robust check-and-balance system.
Topics
Community Discussion
No community discussion yet for this question.