Inovace systému Compliance Management v mezinárodní společnosti

Abstract

This thesis is focused on creating innovation compliance management system in an international organization. This thesis consists of two main parts: theoretical and practical. The theoretical part is focused on information security and compliance management. The practical part is focused on creation of innovation itself. There were used methods such as Segregation of Duties or procedures and guidelines ISO 27002 and ISO 19600: 2014. In the thesis, there was also reviewed current compliance management system of the organization and identified its shortcomings. The proposed solution includes collision matrix, which includes the critical activities performed by the user of the SAP information system. Furthermore, this solution includes the design and creation of a database and the process to obtain the necessary data. Solution also includes Java EE application, which is used to analyze user activity collisions in SAP system. The results of this thesis may be used by compliance managers, who are responsible for enforcing compliance rules in this organization.