1. Using Risk and Security Snapshot Report
  2. Set Up Risk and Security Snapshot Report

Set Up Risk and Security Snapshot Report

To use Risk and Security Snapshot Report, your organization must complete several setup procedures. Then your organization must create and assign a custom job role that contains a required privilege as well as a duty role that contains new elements called "permission groups."

The first setup procedure is to select a promotion code.

  1. Click Navigator > My Enterprise > Enterprise.

  2. In an Enterprise Information page, click the Manage Promotion Codes link.

  3. In a Manage Promotion Codes page, click the Enter Promotion Code button.

  4. In an Enter Promotion Code dialog, enter the value GTG484673. Then click Save and Close.

  5. Click the Done button.

Next, opt in to Risk and Security Snapshot Report.

  1. Click Navigator > My Enterprise > Offerings.

  2. In the Offerings page, scroll to the Risk Management offering and select it.

  3. Click the Opt In Features button.

  4. In an Opt In: Risk Management page, select the Enable check box in the Recommendation Engine row.

  5. Select the edit (pencil) icon in the Features column of the Recommendation Engine row.

  6. In an Edit Features page, click the Enable check box for Security Checkup and Recommendations.

  7. Click Done in the Edit Features page, and then Done again in the Opt In: Risk Management page.

Next, set a profile option that enables job roles to recognize permission groups (and the duty roles that contain them).

  1. Click Navigator > My Enterprise > Setup and Maintenance.

  2. Expand the Tasks panel tab and click Search.

  3. In the Search Tasks field, enter Manage Administrator Profile Values. Click the Search icon.

  4. In the list returned by the search, click the Manage Administrator Profile Values item.

  5. The Search area of the Manage Administrator Profile Values page includes a Profile Option Code field. In it, enter ORA_ASE_SAS_INTEGRATION_ENABLED. Click the Search button.

  6. A record of the ORA_ASE_SAS_INTEGRATION_ENABLED profile value appears. In the row for the Site profile level, select Yes in the Profile Value field.

  7. Click Save and Close.

Next, create the custom job role that grants access to Risk and Security Snapshot Report, or edit an existing custom job role to provide that access, and assign the role to users. For the procedures to edit a custom job role and to create one from scratch, see two topics in the Securing Risk Management guide: Create Risk Management Roles in the Security Console and Copy or Edit Risk Management Roles in the Security Console. But add this information:

  • In the Basic Information page, you assign a name and a code to your role, and select the GRC - Job Roles role category. (If you're editing a role, this is already done.) An Enable Permission Groups button then becomes active; click it. A dialog opens, showing the name of the role you're creating or editing. Click its Enable Permission Groups button.

  • Use the Function Security Policies page (as instructed in the "Create Risk Management Roles" topic) to add the Create and Manage Recommendation Engine Analyses privilege. You may choose to search for it by its code, GTG_CREATE_AND_MANAGE_RECOMMENDATION_ENGINE_ANALYSES_PRIV.

  • Don't select anything in the Permission Groups page.

  • In the Role Hierarchy page, select the Roles and Permission Groups tab. In it, click Add Role. An Add Role Membership dialog opens. In it, search for and select Security and Controls Snapshot Report. This is the duty role that contains the permission groups your job role requires. You may choose to search for the duty role by its role code, ORA_DR_GTG_SECURITY_AND_CONTROLS_SNAPSHOT_REPORT_ DUTY.

  • If you're editing a role, the Users page retains the role's user assignments. If you want to modify those assignments, or if you've created a new role and need to assign users to it, you must do so in the Users page.

Finally, log off of Oracle Fusion Cloud Applications and log back in.