Analyze & Identify
Is the access to the SAP data as it should be? Get direct insight in your risk posture with our customizable ruleset with pre-defined rules for Sox, J-Sox, GDPR and best practice of audit firms.
Includes transactional usage and difference between the potential risks and the actual risks.
Inspect the system configuration of SAP.
View data from every angle and support all different levels within the organization. From dashboards to the very technical details, in order to remediate risks.
Fine-tune the ruleset accoring to the needs based on your implemented processes, development and organizational restrictions.
Direct insight is provided in quick wins contributing to risks remediation with minimal impact on business like role inconsistencies and unused access rights.
Simulate the impact of the suggested changes on risk level. Apply the changes using the standard SAP transport mechanism.
Fit-Gap insight between actual risks and potantiel risks to speed up risk mitigation.
Document compensating controls to remediate the risks that cannot be solved by changing access rights.
Remove broad access rights by implementing the emergency procedure.
Business is continously changing. Prevent new risks from happening by simulating what the risk impact of changes will be.
The SoD and risk impact can include the approval workflow. Only approved changes will be implemented in the SAP system. This can be done fully automated to save on your user management costs.
Monitor the compensating controls with complete audit trail.
Full audit trail to prove you are in control.
Emergency access is supported if users need temporary broad access rights, with full logging and monitoring of performed actions in the SAP system.