Upload
thomas-barber
View
218
Download
2
Tags:
Embed Size (px)
Citation preview
IMFO Annual Conference – 2015S21: Good Governance & Oversight B2B
Sage Evolution
Info Share – Market Segmentation
Sage Evolution
Info Share – Number of Sites
South African and International sites9,408Total number of sites
67,732Total number of users…and counting!
Destination Sites
International 4,795
South Africa 4,613
Interna-tional 4,795
South Africa 4,613
Sage Evolution
• At SAGE, we believe that Good Governance is about strong leadership mitigating risks through:-
• Embracing Corporate Discipline
• Respecting the Statutes
• Deploying Enabling Systems and Business Processes
• Empowering People
Good Governance Defined
Sage Evolution
IT Governance is informed by:-
• Corporate Governance of Information and Communication Technology Policy Framework (CGICTPF) adopted by Cabinet
• King III
• ISO 38500
• COBIT 5
IT Governance
Sage Evolution
COBIT 5 - Control Objectives for Information and Related Technology
Sage Evolution
AGSA Focus - Security Management
• IT security is managed at the highest organizational level (CIO)• Strong password controls to authenticate system access, minimum
character length, alpha numeric, encrypted, forced change of password
• Firewalls & routers are configured correctly within the network environment
• Patch management processes to prevent exploitation of vulnerabilities• Antivirus software is implemented across the organisation• System configurations need to ensure that security vulnerabilities and
incidents are detected, monitored, reported and resolved on a regular basis
• Activities within the system network including databases are tracked, using audit trails and reviewed on a regular basis by someone independent of administration functions and in a senior position
Sage Evolution
AGSA Focus - User Access Management
• Formally documented and approved user account management standards and procedures are in place
• Formal access request for registering users, changing of access rights, password resets and termination of access rights is approved by management
• The number of users with administrator privileges that can perform all functions pertaining to user account management is minimised
• Activities of system administrators are monitored by an independent person, in a senior position
• Periodic reviews of employee access rights and privileges to ensure it is in line with their job responsibilities are performed
Sage Evolution
AGSA Focus - IT Service Continuity
• The IT continuity and disaster recovery plans have been incorporated into the organisational business continuity plan.
• The IT continuity plan and DRP has been distributed, updated and tested and is also stored at an offsite location
• An IT backup and retention strategy has been implemented• Backup procedures for data and programs exist and are performed
according to above strategy• Backups are stored in a secure offsite storage facility• Physical access and environmental controls over the offsite storage
facility are implemented
Sage Evolution
Product Stack – Municipal Solutions
Project Tracking Sales & Purchase OrdersInventory Management
CashBook ReceivablesGeneral Ledger/Budgets/Financials Payables
Branch Accounting
Bank ManagerCash Manager Multi CurrencyCredit Control
Fixed AssetsManagement
Customer Consolidation
AnnuityBilling Job Costing
Serial Numbers
Manufacturing
Supply ChainManagement
Cutomer Relationship Management
Point of Sale
Payroll & Human Resources
Pricing Matrix
InventoryAdvisor
Multi - WarehousingLot Tracking
Sage Intelligence Reporting Centre
Cloud Solutions Software Development KitMobility
Municipal Billing mSCOA
Governance
Conclusion – Thank You!