It is a well-known fact that Segregation of Duties (SOD) is a top contributor for fraud activities and is a key part in achieving Sarbanes Oxley (SOX) Compliance. The challenge of achieving this is typically more difficult in small and medium sized companies due to the lack of advanced tools and expertise to manage this risk effectively.
SAP systems are not exempt from this situation. There are lots of causes that increase the number of SoD risks within SAP systems, for instance, an obsolete role model or a lack of knowledge about authorizations. Another of the main reasons is the movers process because when users change their positions they get new access without losing the previous one. This accumulation of authorizations increases the possibility of having SoD risks.
In Inprosec, we know that not all companies can have a SAP GRC license or similar. For this reason, we offer a SoD Risk Assessment of your SAP systems with just downloading eight SAP tables.
Contact us if you want to know more about this product.