Protect the file cabinets at all costs

“The Middle of the Pack” continues…

So, here’s where it gets a bit controversial, but first: A show of hands from people who work for companies that keep all file cabinets under lock and key. I’m waiting.

There appears to be an inverse relationship between the volume of account security groups in a Coupa Software instance, and the overall quality of the deployment. The amount of time spent configuring, maintaining and applying account groups to user accounts has to be the least value adding task I can think of. [For those who don’t know, account groups restrict which segments of a ChartofAccounts are visible to Coupa users]. In most situations, we’re talking about indirect, non-confidential spend. There are far more efficient and effective ways of committing fraud or creating an audit risk, than viewing or exporting PO and invoice records. The feature has its purpose, but as they say, “too much of anything makes you an addict”.

By contrast, Account Validation Rules can usually be set up once, can be applied globally, rarely have to be updated, and will restrict users from actually charging purchases and expenses to areas of the business that they should not. Visibility does not lead directly to fraud. If it did, your file cabinets would be empty.