Come learn the top 10 security/audit risks specific to SAP. Basics of SAP auditing and security will be discussed with further in depth analysis on particularly risky topics. Those attending will learn common pitfalls and miss-configurations within SAP and how to handle those issues.
- Securing default profiles and generic accounts
- The importance of securing the S_DEVLOP authorization object.
- Logging and securing access to production
About Lucas Leaon
Luke Leaon is a technology risk advisor, regional ERP leader and national Approva Security and Quality leader at RSM. Prior to joining RSM he work for a large public utility and spent four years at one of the Big four professional service firms. With over eleven years of industry experience he has extensive experience leading engagements around SAP security, risk and controls; segregation of duties testing; SOD rule set assessment; control redesign; business process improvement; information technology (IT) risk assessments; IT Sarbanes-Oxley testing; Service Organization Control (SOC); Technical application, operating system and database assessments.
About Adam Harpool
Adam Harpool is a Technology Risk Advisory supervisor in McGladrey’s New York office and a SAP Subject Matter Specialist for the Firm. Prior to joining McGladrey, Adam served as a trusted advisor and management consultant in the Big 4 for leading Fortune 500 and mid-market enterprises, with a focus on developing and leading teams in enterprise resource planning (ERP) advisory services, IT strategy and performance consulting, IT internal audit, and performance improvement/business process enhancement engagements.