Select Page

SOX and On-Premises EPM 11.1.2.4 and Prior

Author: Dave Shay | | October 1, 2019

Let’s talk about one of our favorite subjects: Sarbanes-Oxley compliance combined with on-premises Oracle EPM/Hyperion.

 
Auditors and IT Risk Management departments tend to frown on running SOX-relevant financial applications on systems where a vendor’s Extended Support has expired. Plain English: no ongoing defect remediation via patches, and no new security vulnerability patches.

As I wrote in a prior post and a recent white paper, this ship has already sailed for:
 

  • Oracle EPM 11.1.2.3 and prior versions
  • Microsoft Windows Server 2008 R2
  • Microsoft SQL Server 2008 (all Service Packs)
  • Java 6 and prior versions
  • JRockit 6

 

The next Extended Support expiration dates looming are:
 

  • Oracle EPM 11.1.2.4
  • Microsoft Windows Server 2012 R2
  • Microsoft SQL Server 2012 SP3
  • Java 7

 
Of the above, the first deadline we’ll hit is December 2021, or December 2020, and that’s for Oracle EPM/Hyperion 11.1.2.4 (“Safe Harbor” – I do not speak on behalf of Oracle Corporation, and their dates may change). Standard Support is set to expire Dec 2020, and Extended Support is set to expire Dec 2021. Check your Oracle Support contract to see which option you’re on.

What readers need to consider is their timeline to either upgrade to EPM 11.2 (once released), or migrate to the Oracle EPM Cloud.

December 2021 seems like a long time away, but let’s again re-visit SOX.

Let’s say your fiscal year aligns with the calendar year: January to December. In this scenario, SOX-relevant applications only get two windows per year to complete upgrades and do a go-live cutover to a new system: May and September. Shoot for May and use September as your fallback position. Going live during either your fiscal 1st Quarter or 4th Quarter will trigger a red flag in your SOX audit.

So keep these dates in mind and then start counting backward. Don’t wait until late in 2021 to either upgrade or move to the cloud. By then most EPM consulting partners, such as the firm I work for, will likely be slammed trying to hit that Sept 2021 SOX deadline. I’m reminded of when Microsoft revoked support for browsers older than IE11…we were insanely busy because many customers were still on EPM 11.1.2.1 or older, and IT Risk Management departments forced Finance to upgrade to remain compliant.

One final thought: I’ve recently been contacted by a competitor promising cheaper support rates than Oracle’s. I want to discourage people from considering this, unless you intend to completely retire Hyperion and switch to a different platform on or before Q3 2021. A 3rd party partner/consultant will face legal problems if they are discovered installing patches or upgrades a former Oracle customer is no longer entitled to receive.

Oracle EPM Cloud Vs. On-Premises: What’s the Difference?

EPM applications help measure the business performance. This post will help you choose the best EPM solutions for your organization’s needs and objectives.

Bobby Ellis | April 10, 2018

EPM Cloud: Hyperion Planning vs. Oracle (E)PBCS

Moving to the cloud has a variety of advantages. Learn about the differences between Hyperion Planning & Oracle (E)PBCS; which solution is best for you?

Bobby Ellis | September 19, 2018

EPM Cloud: Hyperion Financial Management vs. Oracle FCCS

In this blog post, we’ll explore the differences between Oracle’s Hyperion Financial Management vs Oracle Financial Consolidation and Close Cloud (FCCS).

Nayar Ellis | November 19, 2018

Subscribe to Our Blog

Never miss a post! Stay up to date with the latest database, application and analytics tips and news. Delivered in a handy bi-weekly update straight to your inbox. You can unsubscribe at any time.

Work with Us

Let’s have a conversation about what you need to succeed and how we can help get you there.

CONTACT US

Work for Us

Where do you want to take your career? Explore exciting opportunities to join our team.

EXPLORE JOBS