ERP finance: how to ensure data security?

A true data security policy

It is important to implement an enterprise-wide IT security policy. The security measures affect all areas. The premises must be secured, as well as access to the company’s data and tools. To be effective, a security measure must be a compromise between level of protection and ease of use .

For example, there is no point in imposing strict password rules if the passwords are then displayed on post-it notes because it is impossible to remember them. Identification with a personalized PKI card card eliminates the need to memorize complex passwords and provides better security for the workstation.

A crucial element in data security is the management of access rights. All too often, access rights are granted too quickly and too widely. Profiles must be established to assign rights according to actual needs. Thus, an intern will certainly not need access to all of the company’s confidential information.

To secure the company’s data and computer systems, a new position has emerged in companies. This is the Chief Security Officer (CSO ) who is responsible for developing and overseeing policies and programs that mitigate security risks to individuals, intellectual assets, reputation and physical property. It is also essential to set up a data governance before launching a Big Data project, in order to control the collection and use of the company’s data.

Support in business processes

The implementation of an ERP Finance system leads to a change in work habits. A realistic change management policy must be put in place in order to facilitate the learning of the software package and to accompany the users. This will limit the risk of data loss due to handling errors .

Everyone must be responsible for how they use the data. The software package must therefore trace any record, allow its author to be identified and maintain a log of changes so that an old version can be restored if necessary. The export of data from the CRM must also be controlled and limited to avoid any data leakage to the competition and compliance with the RGPD.

Data security: a reliable information system

Finally,data security requires a reliable and robust information system. Accesses must be filtered and data saved. A disaster recovery plan, or
DRP
must be put in place. Thus, in the event of a major loss of sensitive information, it will be possible to restore a recent backup and, by the same token, restore the company’s activity.

In order to have all the necessary security solutions, it is important to regularly update software and hardware to install the latest versions and correct any security flaws.

Also read in our " ERP Finance project " file:

• What are the key challenges facing finance managers today?
• What are the key regulatory issues for CFOs in 2019?
• Digital transformation of the finance function : where do you stand?
• Digitization of the finance function: what should we expect in the future?
• What changes does dematerialisation bring to the finance function?
• Finance management: what technological tools are available to CFOs?
• ERP software definition: what is an ERP?
• What is the use of an ERP solution for the finance function?
• ERP finance: what do you need to know as a finance manager?
• CFO: what are the advantages of an ERP for the finance function?
• Finance software: which ERP to choose for your company?
• Postmodern ERP: the right choice for your company?
• Should you consider a Postmodern ERP solution?
• The challenges of a post modern ERP
• Post-modern ERP: the checklist
• Help in choosing ERP finance: why use a firm?