Oracle 1z0-1058-23 Oracle Risk Management Cloud 2023 Implementation Professional Exam Practice Test

• Navigate to the Issues tab in the Issues work area.
• In the Issues page, select the row for the issue you want to close.
• Ensure that the issue status is In Edit.
• From the Actions menu, select Close Issue.
• A Close Issue dialog will open.
• Select a reason for closing the issue in a Specify Reason for Action list.
• Optionally, add a comment that supports the action you selected.
• Click OK.

Once you close an issue, it can no longer be edited.

References:

• Oracle documentation on closing an issue1.

• Group the expense reports by “Report Number” to ensure each report is evaluated individually.
• Apply an inclusive filter to select reports where the “Expense Type” includes any of the specified suspicious combinations.
• The “In” condition allows the filter to match any of the listed expense types within a single report.

References For specific instructions and verified procedures, please refer to the Oracle Risk Management documentation available on the Oracle website or contact Oracle support directly for assistance.

Please note that the actual implementation details and available features may vary based on the version of the Oracle Risk Management system you are using and any customizations that have been applied. It’s always best to consult the official documentation or a qualified Oracle consultant for the most accurate information.

The issue described occurs when the Risk Owner role lacks the necessary privileges to access the control object. Even though the risk object has been created and mapped to a control object, if the Risk Owner’s role is not configured with the appropriate permissions, they will not be able to view or interact with the control. This is a common scenario during the implementation phase where roles and permissions need to be carefully assigned to ensure proper access to the risk management system’s features.

References:The explanation is based on the Oracle Risk Management documentation, which provides insights into role-based access and the importance of correct privilege assignment for different roles within the system123.

• Filter A is used to select payments from the specified business units (BU1, BU2, BU3, and BU4), excluding BU5.
• Filter B groups the payments by each supplier and sums the payment amounts. This filter is then used to identify suppliers who have been paid more than $100,000 USD across the selected business units.

References:The information is based on the Oracle Risk Management Cloud documentation and resources that discuss transaction models and filtering criteria for identifying specific conditions such as payment amounts to suppliers1.

• Identify the number of access points in each entitlement.
• Since the entitlements do not share access points, each access point in one entitlement can be paired with each access point in the other entitlement.
• Multiply the number of access points in the first entitlement by the number of access points in the second entitlement to find the total number of combinations.

When an assessor is reviewing Prior Results as part of an operational assessment for a control, such as manual AP Invoice entry, they are able to view the results of prior operational assessments specifically for that control. This is because the system is designed to allow assessors to focus on the historical performance and evaluation of the control in question, providing a targeted and relevant overview of its effectiveness and any issues that have been identified in the past.

References:The information provided is based on the Oracle Risk Management documentation, which outlines the processes and capabilities of the system regarding operational assessments and the review of Prior Results1.

• Functional Security Policy: This selects a set of functional privileges, each permitting the use of a field or other user-interface feature. It defines a policy for a duty role, selecting functional privileges to be inherited by other roles the duty role belongs to1.
• Data Security Policy: These policies apply to Oracle Cloud applications and can be assigned to duty roles. They grant access to work areas, dashboards, task flows, application pages, reports, batch programs, etc2.

References: For the official and verified answer, please refer to the Oracle Risk Management documentation on their website, specifically the sections discussing the creation of roles and the assignment of function security policies and data security policies to duty roles132.

When a new control is added in Oracle Financial Reporting Compliance and the control owner clicks Submit, the control’s state changes to reflect the stage the record has reached in its workflow. Since users with the Control Reviewer and Control Approver roles exist, the expected outcome is that the control goes into the “Waiting for Approval” state. This state indicates that the control is pending review and approval by the designated users with the appropriate roles.

References:

• State and Status of Records in Financial Reporting Compliance1.
• Overview of Oracle Financial Reporting Compliance2.

• Navigate to the “Access Entitlements” page within Oracle Advanced Access Controls.
• Create two separate entitlements that include the client-defined access points for initiating a purchase order and for approving payments on that purchase order.
• Go to the “Models” tab of Advanced Controls and create an access model. This model will be based on the entitlements you have just created.
• After creating the access model, proceed to the “Controls” tab of Advanced Controls.
• Deploy an access control and select the access model you previously created. This will enforce the control to monitor user access as per the requirement.

References:

• Oracle Advanced Access Controls documentation provides a comprehensive overview of the process for creating models and controls to monitor access assignments for separation-of-duties violations1.
• The Oracle Advanced Access Controls Cloud Data Sheet details the features relevant to monitoring access policies, including the creation and deployment of access controls2.

1: Overview of Oracle Advanced Controls 2: Oracle Advanced Access Controls Cloud Data Sheet

• In Oracle Risk Management Cloud, risks need to be in an “approved” state before you can associate controls with them. This ensures that only vetted and acknowledged risks are managed with corresponding controls.
• While the Data Migration tool is typically used for importing data from external sources, it is not designed for mapping controls to risks. Instead, controls are usually added manually within the system.
• After controls are defined, they can be related to the approved risks manually, ensuring that each risk is paired with appropriate control measures.

• Perform Impromptu Assessments: The Control Owner can perform impromptu assessments for the two P2P controls. This allows for immediate assessment without the need for a scheduled plan and is useful for ad-hoc analysis.
• Initiate a Planned Assessment for Both Controls Together: The Control Owner can initiate a planned assessment and include both controls in the same assessment. This is a more structured approach where the controls are assessed as part of a predefined schedule.
• Initiate Separate Planned Assessments: Alternatively, the Control Owner can initiate two separate planned assessments, one for each control. This allows for individual attention to each control but requires managing two separate assessment processes.

References:The information provided is based on the Oracle Risk Management Cloud documentation, which outlines the processes for control assessments, including impromptu and planned assessments12. The references detail how Control Owners can manage and execute control assessments within the Oracle Risk Management framework.

To define a transaction model for identifying duplicate invoices based on Invoice Numbers and Invoice Amounts, the following standard filters can be combined:

• Invoice Amount is equal to itself: This filter will identify records where the invoice amount matches exactly in more than one invoice, suggesting a potential duplicate1.
• Invoice Number is equal to itself: This filter will select records where the invoice number is the same across different invoices, which is a direct indicator of duplication1.

By combining these two filters, the transaction model can effectively pinpoint duplicate invoices by matching both the invoice number and the amount, which are the key identifiers for such duplicates.

References:

• Oracle’s documentation on interpreting transaction model results explains how filters can be used to identify duplicate records, such as invoices, by setting an attribute of a business object equal to itself1.
• The overview of transaction models provided by Oracle outlines how a combination of filters defines a complete risk, with each filter evaluating records returned by filters that precede it2.

• On the Manage Issues page within Oracle Risk Management, users have the ability to link various related objects to an issue.
• The objects that can be associated with an issue include Assessments, Risks, and Controls.
• This association is crucial for maintaining a comprehensive view of the risk landscape and ensuring that all relevant factors are considered during the issue management process.

References:The information is based on the Oracle Risk Management Cloud documentation which details enhancements to reporting issues, remediation plans, and related objects1. Additionally, discussions on the Oracle community forums confirm that related objects such as processes can be viewed but are not directly related on the Risk Definition Page, indicating that the primary related objects are indeed Assessments, Risks, and Controls2.

This filter would allow the model to compare the dates of the invoice and the credit card transaction to ensure they are within a reasonable time frame of each other, which is indicative of a duplicate charge. A similarity within +/- 10 days is a common practice to account for processing delays while still capturing potential duplicates.

References: For the most accurate and detailed explanation, please refer to the Oracle Risk Management documentation on the Oracle site, specifically the sections that discuss building transaction models and setting up filters for identifying duplicate charges.

Please note that this is a logical deduction based on the information provided and not a verified answer from the official Oracle documentation. For a verified answer, you should consult the Oracle Risk Management documents directly.

To build a transaction model that identifies invoices with USD amounts greater than the supplier’s average invoice amount, the filters must be arranged to first calculate the average invoice amount for each supplier, then select only those invoices in USD, and finally compare the invoice amounts to the average. Here’s the correct order:

• Add an “Average” Function filter grouping by “Supplier ID” where “Invoice Amount” is greater than 0. This will calculate the average invoice amount for each supplier.
• Add a standard filter where “Invoice Currency” equals “USD.” This will narrow down the invoices to those in USD currency.
• Add a standard filter where the delivered “Average Value” attribute is less than “Invoice Amount.” This will identify the invoices that are greater than the average amount calculated for each supplier.

References:The arrangement of filters is based on the AND relationship processing order as described in the Oracle Risk Management documentation, which specifies that filters at one level are evaluated before those at the level below it1.

• Select the type of Oracle Financial Reporting Compliance object you want to relate to the advanced controls you’re deploying. You may select Process, Risk, or Control.
• Select ‘Add Related Object’.
• In a Search dialog, supply parameter values to list a filtered set of Oracle Financial Reporting Compliance objects.
• Click ‘Search’ to list the objects that satisfy your search parameters.
• From the list, select any number of objects, then click ‘OK’.
• As needed, select another type and add objects of that type by repeating steps 1 through 5.

This process allows you to relate new processes and controls to the Financial Reporting Compliance objects.

References:

• Overview of Oracle Financial Reporting Compliance1.
• Relate Controls to Financial Reporting Compliance Objects2.

To identify key stakeholders for Financial Reporting Compliance Cloud, focus on individuals involved in certifying internal controls for regulatory mandates like SOX. These stakeholders are typically executives responsible for ensuring that the company’s financial reporting processes are compliant and reliable.

References:

• Oracle Financial Reporting Compliance Cloud Data Sheet1.
• Overview of Oracle Financial Reporting Compliance2.

To address risks using treatment plans in Financial Reporting Compliance, the following settings should be configured:

• Navigate to the Module Objects in the application.
• Select the Edit Risk Object Configuration option.
• Set the Treatment attribute to Show. This will enable the visibility of treatment plans within the risk object configuration, allowing for the management and association of treatment plans with specific risks1.

References:

• Oracle’s documentation on Financial Reporting Compliance details the management of treatment plans, including the configuration settings required to show treatment plans within the risk object configuration1.
• Additional resources from Oracle provide guidance on the use of treatment plans in Financial Reporting Compliance, outlining the steps to create, view, edit, and delete treatment plans23.

Oracle Advanced Access Controls is designed to enforce segregation of duties within your applications. It identifies users with sensitive access and separation-of-duties conflicts by analyzing their assigned roles and privileges. When these authorizations, individually or in combination, create the potential for fraud or significant error, Oracle Advanced Access Controls flags them, helping to prevent such risks.

References:

• Overview of Oracle Advanced Controls1.
• Oracle Advanced Access Controls identifies users with sensitive-access and separation-of-duties conflicts2.

To correct an incorrect Risk-Control mapping, the following steps should be taken according to Oracle’s documentation:

• From the Data Load Workbench, select the Validation Errors tab.
• Select Fix Maps to access the mappings.
• In the Data Load Mappings screen, identify and fix any errors.
• Click Validate, and then click Save to apply the changes1.

References:

• Oracle Help Center provides a guide on fixing mapping errors in the Data Load Workbench1.
• The overview of Oracle Advanced Controls outlines the process of managing risk and compliance within Oracle applications2.