To provide direction for mitigating risks of inappropriate user access within and across financial and audit relevant systems, and to enable the prevention of such access. Where prevention is not possible, monitoring of user access to potentially unauthorized conflicting transactions and activities will be implemented through formal supervision, and review. This updates the existing Segregation of Duties (SOD) policy to strengthen business processes and information system access controls.

Distribution Statement A