SoD
Segregation of Duties (SoD) is a control that ensures no single person has end-to-end control over a critical business process — requiring multiple people for sensitive transactions to prevent fraud and errors.
⚙️ How Does It Work?
IGA platforms define SoD rules (e.g., the person who approves a payment cannot also initiate it). The system enforces these rules during access provisioning and flags violations in access certifications.
📍 Where Is It Used?
Financial systems (SOX compliance), ERP platforms (SAP, Oracle), procurement, payroll — anywhere fraud or error risk exists in multi-step processes.
💡 Real-World Example
An SAP SoD policy states no user should have both Create Vendor and Approve Payment access. An IGA system detects 15 accounts have both — a SOX violation flagged to the compliance team before the audit.
🔗 Related Terms
Stay Ahead in Identity Security
Get weekly IAM, PAM & IGA insights via Identity Pulse.
Subscribe to Identity Pulse →