In this series, we’re looking at quick fixes to improve NetSuite security.
It seems really intuitive that companies should minimize the number of system administrators, and yet we still run into companies with long lists of users with administrator functionality.
Security Fixes for NetSuite: Minimize System Administrators
In NetSuite, the Administrator and Full Access roles have full access to just about everything.
Full Access has a couple of differences from the Administrator role, but the Full Access role is being deprecated with NetSuite version 2019.1. A new Core Administration permission is available to compensate for the change.
Users with the Administrator role have access to everything in NetSuite. After all the other posts in this series this should seem like a an easy call, aggressively reduce the the number of NetSuite administrators. Reducing the number of administrators significantly reduces risk and improves segregation of duties.
You can find all of the fixes in this series at NetSuite Easy Security Fixes.
Looking for more useful NetSuite security information? Get our "Designing NetSuite Security" paper, written in partnership with Protiviti, which will help you to define security requirements during NetSuite implementation, or help you re-implement security in a current live environment.