New SFS Online Validation Process Overview

New SFS Online Validation Process Overview
Slide Note
Embed
Share

The statewide financial system's new online validation process overview for NYSICA. Learn about annual user and role validations, importance of reviews, and updated training materials. Stay informed for efficient compliance

  • Statewide Financial System
  • Validation Process
  • Annual Review
  • Training Materials
  • Compliance
sur_but
sur_but Follow

Uploaded on Apr 13, 2025 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. New SFS Online Validation Process Overview for NYSICA April 26, 2018 Statewide Financial System (Internal Use Only). Contents subject to change. Contents subject to change. Statewide Financial System (External Use Only). 4/26/2018 1 1

  2. Welcome and Introductions Statewide Financial System (Internal Use Only). Contents subject to change. Contents subject to change. Statewide Financial System (External Use Only). 3 2

  3. Agenda / Key Takeaways for Today Annual User and Role Validations (Quarterly Report Improvements project) External Audit SFS Security Policy SFSAgency Security Maintenance Procedure Security Maintenance Best Practices Administrators etc. are privileged users in the system SFS User Provisioning Request Form SFS Internal Control Compliance Review Questions Statewide Financial System (External Use Only). Contents subject to change. 3

  4. Importance of Annual Review Why is it important to you and SFS: To ensure confidentiality, integrity and availability of the data in the SFS by your periodic review of user and role information. OSC is subject to an Annual Financial Audit to which SFS is included. Each agency that uses SFS is subject to be included in the audit. You are responsible for the user and role information for your agency. Critical success factors for the Annual Financial Audit are: Timely review and maintaining the documentation related to the review. Your agency maintaining documentation around user provisioning. Statewide Financial System (External Use Only). Contents subject to change. 4

  5. Annual User and Role Validations Kristen Pelcher Statewide Financial System (Internal Use Only). Contents subject to change. Contents subject to change. Statewide Financial System (External Use Only). 24 5

  6. Annual User and Role Validations SFS has implemented an online solution for the quarterly reports process beginning this fiscal year. Static files will no longer be distributed. Agencies will use real-time queries to complete reviews online. A new workcenter was deployed for easy access. Sign off form will now be completed online Snail mail of forms will no longer be required Amapping exercise was deployed to agencies requesting 100% compliance. Every agency must map at least oneASA, Financial Certifier, and Compliance Reviewer in SFS. If your agency does not have someone mapped to each of these roles, your agency will be unable to provide the required sign off. 6 Contents subject to change.

  7. Updated Training Materials Self-Paced Training in the Statewide Learning Management System (SLMS) SLMS Course Code: SFS-9.2-SPT ADMIN Security 205 Compliance Reviewer 205 Financial Certifier 205 Job Aids on SFSSecure JAA-ASA205-010 JAA-CR205-001 JAA-FC205-001 || Statewide Financial System (Internal Use Only). Contents subject to change. 7

  8. Annual User and Role Validations Security WorkCenter and Agency User and Validation Page Demo 8 Contents subject to change.

  9. Annual User and Role Validations Each quarter, SFS will distribute an email to all agencies as a reminder that SFS user and role validation must be completed at least once annually. Your agency can decide when it is most appropriate for your agency to complete the review. You may choose to complete the review more than once a year. Refer to the Agency Role Guide on SFS Secure to ensure you have the most updated guidance. 9 Contents subject to change.

  10. Yearly Follow-up Cycle October: SFS sends reminder email to ASAs for agencies who have not completed annual sign-off January: SFS sends follow-up email to ASAs AND Internal Control Officers February: SFS conducts phone outreach to ASAs March: Escalation via phone call to agency Chief Financial Officer || Statewide Financial System (Internal Use Only). Contents subject to change. 10

  11. Reminders: Annual User and Role Validations Ensure that your agency: Is aware of new training materials Has mapped to all the required roles Built the new roles into your onboarding/offboarding and transfer processes Has tested the new features in the Agency Business Process (ABP) testing environment 11 Contents subject to change.

  12. External Audit Roger Aucoin Statewide Financial System (Internal Use Only). Contents subject to change. Contents subject to change. Statewide Financial System (External Use Only). 3 12

  13. External Audit As a reminder, any agency with ability to provision users to the SFS is subject to external audit. Your agency may be selected for the Annual Financial Audit and you will be required to provide documentation for user and role provisioning and your annual user and role reviews. Ensure you have required documentation in relation to: Annual user and role review: Spreadsheets Email correspondence Notify your ASA of your review outcome so changes are made within 30 days of review User provisioning processes: Refer to the following resource materials on SFSSecure SFS Agency Security Maintenance Procedure SFS User Provisioning Request Form || Statewide Financial System (Internal Use Only). Contents subject to change. 13

  14. Security Policy KristenPelcher Statewide Financial System (Internal Use Only). Contents subject to change. Contents subject to change. Statewide Financial System (External Use Only). 3 14

  15. Security Policy Reference and Resources >Access to SFS (Security and Roles) > SFS Security Policy 15 Contents subject to change.

  16. SFSAgency Security Maintenance Procedure Kristen Pelcher Statewide Financial System (Internal Use Only). Contents subject to change. Contents subject to change. Statewide Financial System (External Use Only). 5 16

  17. Security Maintenance Procedure on SFSSecure Reference and Resources >Access to SFS (Security and Roles) > SFSAgency Security Maintenance Procedure 17 Contents subject to change.

  18. Maintenance Procedure Resource Considerations Effective communication among supervisors, Human Resources (HR) and agency SFS administrators Supervisors provide the first line of insight on employee movement, extended leave, retirement, employee death, and termination As SFS Compliance Reviewers you should be the champion Engage your management and SFS administrators in conversations for process improvement 18 Contents subject to change.

  19. SFS Administration Observations User provisioning Separated employees and non-employees who have access to SFS are not locked and removed timely. Risk - the separated SFS users retain access to your agencies data. Separate process for contractors Contractors are not in state payroll systems How are you getting notified of contractor movement? 19 Contents subject to change.

  20. SFS User Provisioning Request Form SFS User Provisioning Request Form or your internal SFS access form are the methods for timely notification of provisioning changes to theASA Documentation should be retained in case your agency is required to produce it upon audit request. Authorization and justification of changes being made to users in SFS must be retained for traceability to the ASASelf-Service Request reference number 20 Contents subject to change.

  21. Internal Control Compliance Review Mary Alber Statewide Financial System (Internal Use Only). Contents subject to change. Contents subject to change. Statewide Financial System (External Use Only). 14 21

  22. Internal Control Compliance Review SFS Internal Control Compliance Review document SFS recommends each agency Internal Controls Officer (ICO)/Compliance Reviewer consider the checklist when completing an internal controls compliance review of access to SFS. This checklist supports the published Office of the State Comptroller (OSC) Guide to Financial Operations (GFO) Certification of Internal Controls over the Payment Process. 22 Contents subject to change.

  23. Compliance Review Internal Control Officers/Compliance Reviewers are asked to ensure: An inventory is created of any lack of controls or weaknesses in establishedAgency provisioning processes. Acorrective action plan or compensating controls are established for any weaknesses identified in security processes. Monitor SFS access by utilizing tools provided via the Internal Control Officer Information Center in SFSSecure under Reference and Resources. 23 Contents subject to change.

  24. How to assess compliance? Ensure your agency has established policies over user access and SFS role assignment. Engage your administrators and list out any obstacles you face in these internal processes as currently implemented. Review your list with management for solution support. Escalate any road blocks. 24 Contents subject to change.

  25. Offboarding in SFS When an SFS user leaves state service, the UserAccount should be locked immediately and removed timely. Many agencies listed outstanding travel or credit card transactions as a reason they are not locking or removing SFS access timely. Outstanding travel or credit card transactions are NOT a reason to leave SFS access open to a separated state employee or contractor. RISK: Leaving SFS access in place for a user who left state service 25 Contents subject to change.

  26. Account Security SFSAudit Process runs on the first of every month: Account Locking: Lock agency user accounts that are more than 90 days old and have never been used Lock agency user accounts that have not been used in 180 days or more Removal of accounts: Accounts that are locked by the audit process and not reactivated within 180 days are removed from the SFS system. User accounts that hold travel only roles will not be removed as part of this process. 26 Contents subject to change.

  27. Any questions from our topics today? Thank you for attending! 27 Contents subject to change.

Related


Evaluation and Validation Methods in Machine Learning

Evaluation and Validation Methods in Machine Learning

hamzah
Approval and Validation Updates for NR MIMO OTA in 3GPP TSG-RAN.WG4 Meeting

Approval and Validation Updates for NR MIMO OTA in 3GPP TSG-RAN.WG4 Meeting

abram
Principles of Calibration, Validation, and Warehousing in Pharmaceutical Quality Assurance

Principles of Calibration, Validation, and Warehousing in Pharmaceutical Quality Assurance

olaf
Ortho Vision Validation and Operation in RCI

Ortho Vision Validation and Operation in RCI

farah
Clinical Validation and DRG Validation in Healthcare

Clinical Validation and DRG Validation in Healthcare

belen
NIMAS File Validation Using NIMAC Validation Wizard

NIMAS File Validation Using NIMAC Validation Wizard

imran
Implementing Data Validation in National Accounts with Eurostat

Implementing Data Validation in National Accounts with Eurostat

elin
GOES-R Airborne Science Validation Field Campaign Overview

GOES-R Airborne Science Validation Field Campaign Overview

bbeh
Cross-Validation in Machine Learning

Cross-Validation in Machine Learning

kray
CEOS LPV Fire Disturbance Products Overview

CEOS LPV Fire Disturbance Products Overview

kem_kis
Snow Cover Validation Workshop 2013 Overview

Snow Cover Validation Workshop 2013 Overview

mpie
Machine Learning Techniques: K-Nearest Neighbour, K-fold Cross Validation, and K-Means Clustering

Machine Learning Techniques: K-Nearest Neighbour, K-fold Cross Validation, and K-Means Clustering

yetz582
Enhancing NIMAS File Validation with New Validation Wizard

Enhancing NIMAS File Validation with New Validation Wizard

rudd_i
Facilities Information Management System (FIMS) Data Validation Process

Facilities Information Management System (FIMS) Data Validation Process

jeo_k
ESA Validation Approach & Fiducial Reference Measurements Overview

ESA Validation Approach & Fiducial Reference Measurements Overview

newell_c
Staff Data Validation Training 2023-2024 Overview

Staff Data Validation Training 2023-2024 Overview

waah
ASP.NET Validators and Validation Controls

ASP.NET Validators and Validation Controls

arve_907
Validation Controls in ASP.NET for Secure Data Input

Validation Controls in ASP.NET for Secure Data Input

dmcga
Evolution of Serials Validation Processes at OhioLINK

Evolution of Serials Validation Processes at OhioLINK

evel_571
Validation in Authentic Assessment Items

Validation in Authentic Assessment Items

oli_br
SAGE III Validation Update: Mission Planning, Partnerships, and Criteria

SAGE III Validation Update: Mission Planning, Partnerships, and Criteria

osinski_z
Overview of Sea Ice Characterization and Validation Process

Overview of Sea Ice Characterization and Validation Process

vanc_joy

More Related Content