Information GRC Tool: SAP User Management 50000 foot view
Problem: Provisioning user access in SAP system takes lot of time and there are manual handoffs between approval and user provisioning in SAP system. Improper SAP User management could created following problems
1. Audit Failures documenting, testing, process control, and sign-off requirements mandated by Sarbanes-Oxley sections 302, 404, and 409
2. Lost productivity and waste of resources.
3. Throwing money at the problem
Example: The user joins the company as new employee and it takes to get access to various SAP systems
Tool Information: Work flow based automation so the manual process can be eliminated and approvals can be tracked and verified
Implementation: Can be organizational level or centrally managed
Implementation Strategies:
1. Approval of Access should be at the department or organizational location level
2. The approval should be periodically reviewed by audit group.
3. All approvals should be at local organizational level except for some high sensitive roles
Advantages:
- Approvals can be properly managed and tracked
- Audits will be passed with 100 % confidence
- Resources can be work efficiently and save project cost
4. Quick access to systems for end users
Caution: The tool should not be used as substitute for poor job to role mapping
Selva Kumar
Vice President- SAP Practice
OneAccess-UserManager for SAP
SAP Certified-Powered by Netweaver
http://www.softsquare.biz/oneaccess/
selva@softsquare.biz
Phone: 1 877 717 5487
Automate and Meditate
No comments:
Post a Comment