Does the following sound familiar? Historic growth of an organization’s SAP user roles creates risk and management challenges that are rarely remediated without large-scale efforts or negative impacts on day-to-day operations. A clear picture about who currently has (and should have) which authorizations tends to become fuzzier with every passing year of SAP usage. One contributor to this challenge is a common workaround: employees and developers request, and are provided more access than they require to perform their job duties.
A particular danger with SAP GRC authorization management is that unauthorized access to sensitive data in the SAP system can occur. A certified security standards require a restrictive allocation of critical authorizations and a regular review of the existing role and authorization concept. Especially in terms of security and GDPR you have to be cautious!
This white paper shows you how to manage your SAP GRC authorizations in a secure and compliant way. With our five rules for secure user management, you are protected against such risk in your organization.