A Data Steward and a Technical Manager must document:

• Identified job-functions requiring the implementation of SOD
• Processes and procedures that support compliance with SOD
• Access procedures and other controls to deter an individual or an office from having the authority (or the ability) to perform conflicting functions both outside and within an Information System

• One department should not have the ability to both admit a new student and confer a degree. These functions are split between an Admissions Office and the Registrar’s Office both in business processes and access within the student information system.
• One employee should not have the ability to both purchase items on a purchase card (p-card) and pay the monthly credit card bill. These functions are split between an employee approved to purchase and an employee approved to review financial transactions.
• One department should not have the ability to grant employee pay raises without proper oversight from the Budget Office and the Human Resources Office