For managing Risks, Netsuite provides very good controls, with some better than its peers. For example, the ability to set two factor authentication against Roles was the first for any Oracle Applications.
With that being said, there are still thousands of Permissions and settings within the Application that need to be considered when implementing and reviewing Security. Many of these Permissions need to be grouped together in order to form duties (and hence begin Separation of Duties), these Duties make reporting and analysis much easier.
The problems include: what do you look for to create these Duties? What Duties to separate?
Seecuring provides the ability to make sense of Netsuite Permissions, and have them structured into 'Duties' that can be segregated or reported on stand alone.
If you are struggling to implement a program for effective Controls in your Oracle (and more) Applications, Seecuring provides a subscription based service that provides:
Segregation of Duties
User Access Reviews
Patch Impact Analysis & Configuration Changes
We have been working with ERP/HCM Applications since the early 2000's, and work with leading CPA's, Audit staff and Application specialists to deliver a complete solution.
Before you invest in expensive Software, why not look at GRC as a Service? Faster delivery, lower cost, and more than just reports on your issues - we help Organizations achieve their goals for Internal Controls.