KPMG ERP Controls Survey 2017: Risk is realKey findings from KPMG’s survey of 300 executives in the U.S.

The information contained herein is of a general nature and is not intended to address the circumstances of any particular individual or entity. Although we endeavor to provide accurate and timely information, there can be no guarantee that such information is accurate as of the date it is received or that it will continue to be accurate in the future. No one should act upon such information without appropriate professional advice after a thorough examination of the particular situation.

© 2017 KPMG LLP, a Delaware limited liability partnership and the U.S. member firm of the KPMG network of independent member firms affiliated with KPMG nternational Cooperative (“KPMG International”), a Swiss entity. All rights reserved. Printed in the U.S.A. The KPMG name and logo are registered trademarks or trademarks of KPMG International. NDPPS 700626

Are you concerned about the risks associated with your current ERP solution? of the

executives surveyed are concerned

How concerned are you with moving finance and human resource applications to a cloud ERP platform?

of the executives surveyed are concerned

of the executives surveyed are concerned

How concerned are you with unauthorized individuals gaining access to sensitive data (social security numbers, salary, financial, intellectual property, product cost, customer master data, etc.)?

of executives surveyed planned to allocate 3% to 10% for security and controls

Has your organization had a fraud issue (shadow employee, embezzlement, financial reporting, internal theft, payoff or kickbacks, skimming, misrepresenta-tion, identity theft, etc.) associated with your ERP solution sometime in the last 5 years?

What percentage of a future ERP project is budgeted for ERP security and controls?had a fraud

event

Has your organization had a cyber breach associated with one of your ERP solutions in the past 36 months?

had a breach

53%

17% 19% 75%

71% 78%