UNGM logo

Internal Audit of OSCE’s ERP Access Management

Internal Audit of OSCE’s ERP Access Management Request for quotation

Reference: RFQ/SEC/505578
Beneficiary country(ies): Austria
Published on: 15-Jun-2018
Deadline on: 28-Jun-2018 12:00 (GMT 2.00) Brussels, Copenhagen, Madrid, Paris


The OSCE Office of Internal Oversight (OIO) is responsible for planning, organizing and carrying out internal audits, evaluations, investigations and advisory work on the Organization's activities including field operations in order to determine the adequacy of risk management, governance and internal control, to ensure compliance with the regulatory framework, and to enhance the efficiency and effectiveness of operations.

The OIO is seeking the assistance of an experienced and qualified Vendor to conduct an audit of the OSCE’s Oracle ERP Access Management (Controls and Licences). Specifically, OIO expects the Vendor to:

1. Task I – Identify conflicts and assess the adequacy and functioning of existing controls in:

  • Active role/responsibility sets;
  • Assigned rights on a user and role level;
  • Privileged access rights (e.g. IT and application administrators, treasury rights etc.); and

2. Task II – Identify and quantify options to rationalise user licence allocation through, for example, unused and under-used applications and user accesses.

This internal audit of the OSCE’s ERP Access Management is part of OIO’s 2018 approved work plan.

Detailed information concerning this RFQ, including the Terms of Reference can be requested on the OSCE website at https://procurement.osce.org/tenders/internal-audit-osces-erp-access-management

Yury Golovkov - yury.golovkov@osce.org, Tel: +43 514 36 6202
Email: yury.golovkov@osce.org
First name: Yury
Surname: Golovkov
Telephone country code: Austria (+43)
Telephone number: 514 36 6202
J  -  Services
84000000  -  Financial and Insurance Services
84110000  -  Accounting and bookkeeping services
84111600  -  Audit services
84111603  -  Internal audits