This important 3-hour session examines the strategies, challenges, and technologies you need to master in order to implement a sustainable SAP security architecture and design across your organization’s continuous compliance programs. Gain a comprehensive understanding of the key building blocks of SAP system security and walk through the latest tools and methodologies SAP now makes available to help you improve the design and configuration of your security controls. Evaluate your options for building SAP application security and obtain proven advice for adhering to Sarbanes-Oxley naming conventions. Explore ways to design and develop SAP security roles and activity groups, and walk throughthe steps for creating scripts to upload user master data. Gather ideas for improving and executing security exception and audit reporting with SAP solutions. Take a critical look at what you need from people, processes, and technology to ensure a successful enterprisewide security architecture and framework, and leave this session with valuable tips for identifying the right resources in your organization.

Expand your knowledge of SAP BusinessObjects Access Control and get expert advice for a hassle-free configuration. Find out how to ensure that your access control configuration accounts for your organization’s unique business and compliance requirements. Review the infrastructure considerations that need to be considered before configuring your system, including user provisioning workflow, rules, and mitigations. Acquire best practices for configuring your rule set, and get tips for leveraging GRC enterprise role management to build standard rule sets, cross-system rules, and cross- platform rules. Find out how to ensure data and process integrity and identify key integration points with other components in your SAP landscape to help manage risk and compliance.

Interactive Discussion Forum: How to optimize and get more out of SAP BusinessObjects Access Control

Tuesday, March 17, 12:00 pm - 1:00 pm

Derive greater value from Risk Analysis and Remediation rules within SAP BusinessObjects Access Control

This session delivers techniques, tips, and tricks to identify and fully leverage frequently overlooked risk analysis and remediation functionality within SAP BusinessObjects Access Control for advanced SoD analysis. Identify advanced techniques for creating and maintaining 3 types of SoD rules: cross-system, organizational, and supplemental. Examine the dos and don’ts for creating cross system rules for risk analysis, such as understanding the importance of only creating cross-system rules that truly reflect cross-system risks. Determine if and when you should use organizational rules and learn how to leverage organizational rule reporting to report risk analysis by user and role access. Get examples of how your peers are leveraging supplemental rule tables to exclude false positives for risks that are satisfied by checking the user ID against a supplemental table and ensure that you are using it properly. Walk away from this session with a keen understanding of how to leverage risk analysis and remediation to create and maintain advanced rule sets.