Golgappa.net | Golgappa.org | BagIndia.net | BodyIndia.Com | CabIndia.net | CarsBikes.net | CarsBikes.org | CashIndia.net | ConsumerIndia.net | CookingIndia.net | DataIndia.net | DealIndia.net | EmailIndia.net | FirstTablet.com | FirstTourist.com | ForsaleIndia.net | IndiaBody.Com | IndiaCab.net | IndiaCash.net | IndiaModel.net | KidForum.net | OfficeIndia.net | PaysIndia.com | RestaurantIndia.net | RestaurantsIndia.net | SaleForum.net | SellForum.net | SoldIndia.com | StarIndia.net | TomatoCab.com | TomatoCabs.com | TownIndia.com
Interested to Buy Any Domain ? << Click Here >> for more details...

  1. Categories >> Software >> ERP CRM >> SAP >> SAP Security
  2. Suggest New Category

what is sox and in sap security?

Question Posted / gopi

Answer Posted / gopi

Post Sarbanes Oxley, focus for corporations is more on compliance and security. Sarbanes Oxley has had a major impact on the organizations using SAP R/3 as their ERP. Some of the changes seen in the corporate landsacpe include identifying and documenting processes, implementing controls and safeguards, documenting user access approvals etc. In short, there has been a cultural shift in organizations post Sarbanes Oxley. Below, I have listed 7 major pointers which can help organizations towards better SAP security in the Sarbanes Oxley Era.

1. Provide users access on a need to know and need to do basis.
2. Adequately secure programs, transactions and tables.
3. All user accesses to SAP R/3 are properly authorized and approved.
4. Segregation of duties is maintained for all sensitive business transactions
5. All controls and business processes are documented.
6. Anti-fraud preventive controls are in place to prevent & detect fraud before an audit.
7. User profiles and roles in SAP are secured and designed to meet business requirements.

Is This Answer Correct ?    12 Yes 1 No



Post New Answer       View All Answers


Please Help Members By Posting Answers For Below Questions

You want to remove a developer's and developer keys from a system. How would you do that?

1146

What is audit information system?

1179

How we Educated client personnel in R/3 Security and general Basis knowledge

2331

how we Restrict the auth groups for table maintain, creating Auth group using SE54 to built new Auth groups to restrict tables via auth object S_TABU_DIS

2388

Which transaction code is used to display the user buffer?

1242

Giving fire call access and extending fire call access by using VIRSA’s VFAT tool? can u brief give the explanation

3638

How to do SAP R/3 Security configuration, design, development, testing, implementation and production support.

2695

what is sod in sap security?

1294

As a SAP security consultant what is the most challenged you faced in previous company?

1158

How can sap security be improved?

1175

what is hypercare and go live support?

5408

Support types of WOs you have faced?

2357

Can you explain network topology in sap systems?

1177

how we Completely designed and implemented methodology for controlling end user access to plants, cost centers, etc. and how we Applied to both R/3 and BW environments.

2209

What appears as the last sentence in sap note 587410? What does it men and how would you restrict it?

1103