HomeIdentity Security Encyclopedia › Segregation of Duties

Segregation of Duties

SoD

Segregation of Duties (SoD) is a control that ensures no single person has end-to-end control over a critical business process — requiring multiple people for sensitive transactions to prevent fraud and errors.

IGA Compliance Governance

❓ What is Segregation of Duties?

Segregation of Duties (SoD) is a control that ensures no single person has end-to-end control over a critical business process — requiring multiple people for sensitive transactions to prevent fraud and errors.

⚙️ How Does It Work?

IGA platforms define SoD rules (e.g., the person who approves a payment cannot also initiate it). The system enforces these rules during access provisioning and flags violations in access certifications.

📍 Where Is It Used?

Financial systems (SOX compliance), ERP platforms (SAP, Oracle), procurement, payroll — anywhere fraud or error risk exists in multi-step processes.

💡 Real-World Example

An SAP SoD policy states no user should have both Create Vendor and Approve Payment access. An IGA system detects 15 accounts have both — a SOX violation flagged to the compliance team before the audit.

🔗 Related Terms

IGA Compliance SOX SailPoint Access Certification RBAC
← Service AccountSingle Sign-On →

Stay Ahead in Identity Security

Get weekly IAM, PAM & IGA insights delivered to your inbox via Identity Pulse.

Subscribe to Identity Pulse →
Scroll to top