Skip to main content

Introduction to Oracle GRC Controls


Introduction:-

Oracle GRC term is relatively new word compared to Oracle E Business Suite , But it is getting hot day by day. Where GRC Stands for Governance – Risk Management – Compliance. GRC takes cares of Corporate Governance ,Corporate Compliance , and Enterprise Risk management. GRC integrates organizations to manage known and unknown risks – which helps to demonstrate compliance with their organizational policies and external regulations.GRC includes Orchestrating employees in other words we can call it as configuring GRC system as well as configuring employees or an organization. GRC came into spotlight only after  Sarbanes-Oxley Act which need for all US listed companies to design and implement suitable SOX compliance.


Components of Oracle GRC:-

AACG: – Application Access Controls Governor
It provides a real time monitoring and enforcement controls. Currently It also includes prevention of access provisioning for Responsibility based security design in Oracle EBS, We have custom connectors for RBAC based security design for EBS.Oracle AACG provides library of Best practice controls library.

PCG: – Preventive Controls Governor
As names tells it’s a preventive controls mechanism , where Preventive controls can be used in EBS Forms (except OAF Forms )and EBS Workflows.PCG Protects sensitive application data.One of the widely used feature of PCG is Audit feature which reduce audit costs, reduced maintenance costs and increased IT productivity.

Please check this link for more information :  http://docs.oracle.com/cd/E25459_01/index.htm

CCG: – Configurations Controls Governor
CCG mainly geared towards application integrity and functionality. The solution enables tracking of all changes, providing a detailed audit history, and records designated setup values, permitting quick comparison of values from different points in time or environments. With Oracle Configuration Controls Governor, you can ensure application integrity, audit changes, and continuously monitor setups. As a result, you can reduce financial loss, regulatory cost, audit effort, and the risks associated with them.

TCG: – Transaction controls Governor
TCG continuously monitors transactions against policies to detect suspicious transactions or redundant business practices that get in the way of performance. By spotting anomalies in everyday transactions, the system prevents cash leakage , TCG resides inside AACG which will minimize the installation efforts.

History of Oracle GRC :-
Oracle acquired Logical Apps a California based company in October 2007.Logical apps were leading provider  of automated Governance , Risk and Compliance Controls management solutions. During Oracle acquisition

1) Oracle AACG version was in 7.X version but as of today they are in 8.6.5.The upgrade path was from 7.X > 8.0 > 8.1> 8.2> 8.5>8.6.3>8.6.4>8.6.5
2) Oracle PCG was in its 6.X version but as of today they are in 7.3.3 and this is the upgrade path for (6.5.3 – 6.5.8)->6.5.8.1->7.1.2->7.2.2.2->7.2.3->7.3->7.3.1->7.3.2->7.3.3
3) Oracle CCG current version is 5.5.1,Oracle didn’t made any significant updates for CCG.
4) Oracle TCG current version is 8.6.5.

For More information check the below link from Oracle -
   http://docs.oracle.com/cd/E51797_01/index.htm

https://docs.oracle.com/en/applications/
      http://docs.oracle.com/cd/E25137_01/index.htm

Metalink Notes:

Enterprise Governance Risk and Compliance (EGRC) Product Information (Doc ID 1084596.1)

Critical Patch Information for Oracle Configuration Controls Governor (CCG) (Doc ID 1080374.1)
 

Critical Patch Information for EGRC (EGRCC, EGRCM, EGRCI) 8.6.4.3000(8.6.4.3347) Onwards. (Doc ID 1518219.1)

Comments

Popular posts from this blog

SQL Query to extract Oracle Purchase Order Information

SELECT   poh.po_header_id,    poh.type_lookup_code PO_TYPE,   poh.authorization_status PO_STATUS,   poh.segment1 PO_NUMBER,   pov.vendor_name SUPPLIER_NAME,   povs.vendor_site_code Location,   hrls.location_code Ship_To,   hrlb.location_code Bill_to,   pol.line_num ,   msib.segment1 Item,   pol.unit_price,   pol.quantity,   pod.amount_billed Amount,   pod.destination_subinventory,   ppf.full_name Buyer_Name,   poh.closed_Code  FROM   PO_HEADERS_ALL poh,   PO_LINES_ALL pol,   mtl_system_items_b msib,   PO_LINE_LOCATIONS_ALL poll,   PO_DISTRIBUTIONS_ALL pod,   po_vendors pov,   po_vendor_sites_All povs,   hr_locations_all hrls,   hr_locations_all hrlb,   per_all_people_f ppf,   po_line_types polt WHERE   1                         =1 AND polt.line...

Query to find Operating Unit, Business Group and Legal Entity Information

SELECT   DISTINCT   hrl . country ,                  hroutl_bg . name              bg ,                  hroutl_bg . organization_id ,                  lep . legal_entity_id ,                  lep . name                    legal_entity ,                  hroutl_ou . name              ou_name ,               ...

How To Enable / Disable Forms Personalization Option

Forms Personalization gives great flexibility to execute custom business logic without performing so much of technical work. To start forms personalization navigate to Help -> Diagnostics -> Custom Code -> Personalize But many time when we click on personalize it give below error  " Function is not available for this respnosibility. Change responsibilities or contact your System Administrator " To Enable access to forms personalization function we need to set below profile option.  -  Utilities:Diagnostics -> Yes / No It determines the diagnostics option is enabled for a user / responsibility or site, depending on the level profile option is set. Navigate to System Administrator -> Profile -> System Query for your user / responsibility for which you want to provide access. Set the value to 'Yes' , If you want allow access to forms personalization Since we change the profile option please change the respons...