Interested to Buy Any Domain ? << Click Here >> for more details...
what is sox and in sap security?
- 2 Answers
- 26895 Views
- IBM, I also Faced
- E-Mail Answers
Answers were Sorted based on User's Feedback
Answer / gopi
Post Sarbanes Oxley, focus for corporations is more on compliance and security. Sarbanes Oxley has had a major impact on the organizations using SAP R/3 as their ERP. Some of the changes seen in the corporate landsacpe include identifying and documenting processes, implementing controls and safeguards, documenting user access approvals etc. In short, there has been a cultural shift in organizations post Sarbanes Oxley. Below, I have listed 7 major pointers which can help organizations towards better SAP security in the Sarbanes Oxley Era.
1. Provide users access on a need to know and need to do basis.
2. Adequately secure programs, transactions and tables.
3. All user accesses to SAP R/3 are properly authorized and approved.
4. Segregation of duties is maintained for all sensitive business transactions
5. All controls and business processes are documented.
6. Anti-fraud preventive controls are in place to prevent & detect fraud before an audit.
7. User profiles and roles in SAP are secured and designed to meet business requirements.
| Is This Answer Correct ? | 12 Yes | 1 No |
Answer / praveen
Sarbanes Oxley, focus for corporations is more on compliance and security. Sarbanes Oxley has had a major impact on the organizations using SAP R/3 as their ERP. Some of the changes seen in the corporate landsacpe include identifying and documenting processes, implementing controls and safeguards, documenting user access approvals etc. In short, there has been a cultural shift in organizations post Sarbanes Oxley. Below, I have listed 7 major pointers which can help organizations towards better SAP security in the Sarbanes Oxley Era.
| Is This Answer Correct ? | 6 Yes | 1 No |
This is in continuataion to the previous question. a user is assigned with tcode SA38.how to restrict him to execute only a few reports,say rsusr003.If you're going to modify the role(having sa38) assigned to the user,that will affect other users also because that role might be assigned to multiple users.I don' want that to happen.so what is the solution?
how can we get the email address for multiple users at a time.
if user enters a tcode how the system knows what action should be done ?
3 Answers Deloitte, Pranav Systtech,
what is the use of start menu in defaults tab in su01 screen
What is a niche profile in SAP ?
why we are assigining only 312 profiles to the user
two company codes ex 1001,1002 and two users ,one user need to access both company codes and another user need to access only one company code need to access by giving same role (one role ) to both of them.how can give access or restrict company codes in one role?
What is the latest change that was done to the SU53 trace, which is used to find the last authorization failure in SAP..???
What appears as the last sentence in sap note 587410? What does it men and how would you restrict it?
While run the risk analysis fir two user & its showing blank screen and other users its working fine , whats the reason?
How to know the total no. of users in particular plant in sap?
After maintaining authorization fields, we save and generate the profile. But it prompts for the profile name right when we click on 'Save' icon. So what is the basic difference between Saving and Profile Generating?
-
SAP Basis (1262) - SAP ABAP (3939)
- SAPScript (236)
- SAP SD (Sales & Distribution) (2717)
- SAP MM (Material Management) (912)
- SAP QM (Quality Management) (99)
- SAP PP (Production Planning) (523)
- SAP PM (Plant Maintenance) (252)
- SAP PS (Project Systems) (138)
- SAP FI-CO (Financial Accounting & Controlling) (2766)
- SAP HR (Human Resource Management) (1180)
- SAP CRM (Customer Relationship Management) (432)
- SAP SRM (Supplier Relationship Management) (132)
- SAP APO (Advanced Planner Optimizer) (92)
- SAP BW (Business Warehouse) (896)
- SAP Business Workflow (72)
- SAP Security (597)
- SAP Interfaces (74)
- SAP Netweaver (282)
- SAP ALE IDocs (163)
- SAP Business One (110)
- SAP BO BOBJ (Business Objects) (388)
- SAP CPS (Central Process Scheduling) (14)
- SAP GTS (Global Trade Services) (21)
- SAP Hybris (132)
- SAP HANA (700)
- SAP PI (Process Integration) (113)
- SAP PO (Process Orchestration) (25)
- SAP BI (Business Intelligence) (174)
- SAP BPC (Business Planning and Consolidation) (38)
- SAP BODS (Business Objects Data Services) (49)
- SAP BODI (Business Objects Data Integrator) (26)
- SAP Ariba (9)
- SAP Fiori (45)
- SAP EWM (Extended Warehouse Management) (58)
- Sap R/3 (150)
- SAP FSCM Financial Supply Chain Management (101)
- SAP WM (Warehouse Management) (31)
- SAP GRC (Governance Risk and Compliance) (64)
- SAP MDM (Master Data Management) (0)
- SAP MRS (Multi Resource Scheduling) (0)
- SAP ESS MSS (Employee Manager Self Service) (13)
- SAP CS (Customer Service) (0)
- SAP TRM (Treasury and Risk Management) (0)
- SAP Web Dynpro ABAP (198)
- SAP IBP (Integrated Business Planning) (0)
- SAP OO-ABAP (Object Oriented ABAP) (70)
- SAP S/4 HANA Finance (Simple Finance) (143)
- SAP FS-CD (Collections and Disbursements) (0)
- SAP PLM (Product Lifecycle Management) (0)
- SAP SuccessFactors (33)
- SAP Vistex (0)
- SAP ISR (IS Retail) (28)
- SAP IdM (Identity Management) (0)
- SAP IM (Investment Management) (0)
- SAP UI5 (59)
- SAP SCM (Supply Chain Management) (51)
- SAP XI (Exchange Infrastructure) (49)
- SAP Cloud Platform (34)
- SAP Testing (89)
- SAP SolMan (Solution Manager) (63)
- SAP MaxDB (116)
- SAP GUI (15)
- SAP AllOther (329)
