Surviving an SAP Audit


Author: Steve Biskie
Publisher: N.A
ISBN: 9781592292530
Category: Auditing
Page: 299
View: 2761

Continue Reading →

This book is designed to help SAP project managers, implementation teams, administrators, and users learn how to "think like an auditor" so they can be better-prepared for an internal or external audit of their SAP system. It provides practical, proven advice for preparing an audit roadmap for the system as a whole, and drills down into specific domains (applications, components, and business processes) to provide expert guidance on the most common audit objectives for those areas. No team facing an SAP system audit should be without it!"Think Like an Auditor"Get practical advice from an experienced SAP auditor on how to train your team to look at the audit roadmap from the auditor's perspective, and address weaknesses and "gotchas" before they happen.Bulletproof Your Implementation and Enhancement/Upgrade ProcessLearn how to ensure the effective design and implementation of controls for new SAP implementations, as well as the SAP upgrade and enhancement process, one of the biggest sources of audit problems.Get Hands-on with Specific DomainsUnderstand the audit objectives at the application and component level, including SAP Basis, ERP Financials, MM, SD, and more.Audit Roadmap for General Controls in SAPMaster the nuances of the major general controls in SAP, and the source of many audit issues: change management, segregation of duties, and emergency changes.Audit Tips and ToolsFind answers on special issues and situations, audit tools available for SAP systems, third-party programs and services, and more.

Implementing SAP Governance, Risk, and Compliance


Author: Asokkumar Christian,D. Rajen Iyer,Atul Sudhalkar
Publisher: SAP PRESS
ISBN: 9781592298815
Category: Computers
Page: 712
View: 3555

Continue Reading →

• Effectively implement and configure the entire GRC 10.0 suite• Proactively manage regulatory change, meet business needs, and direct corporate compliance• Quickly identify and manage risk with a single unified view of your entire GRC process• Written for GRC 10.0 and 10.1Learn how to navigate the wild waters and changing tides of corporate compliance and governance. With this comprehensive guide to SAP's GRC suite, develop a strategy that is both reactive and adaptive to regulatory pressures, changing corporate policies, and unanticipated risk. Written for GRC consultants, project managers, and analysts, this book will explore the core components of the GRC module-Access Control, Process Control, Global Trade Services, and Risk Management-and their implementation. Plot your course for a successful GRC implementation.The Building Blocks of GRCFilled with best practices and practical scenarios, learn how to configure and implement the necessary dimensions, master data, and rules setup for each component.Business Process AlignmentReview the regulations that can impact a business and explore the SAP tools that can support compliance.Streamlined GRC IntegrationExplore the unique implementation and configuration processes for each component and learn how to operate these resources side by side.Role ManagementEnsure that your users are reducing risk with appropriate role management and monitoring. Monitoring and ReportingDesign a monitoring schedule that supports your business with clear monitoring rules with the help of Process Control and Continuous Control Monitoring.

Auditing and GRC Automation in SAP


Author: Maxim Chuprunov
Publisher: Springer Science & Business Media
ISBN: 3642353029
Category: Computers
Page: 525
View: 341

Continue Reading →

Over the last few years, financial statement scandals, cases of fraud and corruption, data protection violations, and other legal violations have led to numerous liability cases, damages claims, and losses of reputation. As a reaction to these developments, several regulations have been issued: Corporate Governance, the Sarbanes-Oxley Act, IFRS, Basel II and III, Solvency II and BilMoG, to name just a few. In this book, compliance is understood as the process, mapped not only in an internal control system, that is intended to guarantee conformity with legal requirements but also with internal policies and enterprise objectives (in particular, efficiency and profitability). The current literature primarily confines itself to mapping controls in SAP ERP and auditing SAP systems. Maxim Chuprunov not only addresses this subject but extends the aim of internal controls from legal compliance to include efficiency and profitability and then well beyond, because a basic understanding of the processes involved in IT-supported compliance management processes are not delivered along with the software. Starting with the requirements for compliance (Part I), he not only answers compliance-relevant questions in the form of an audit guide for an SAP ERP system and in the form of risks and control descriptions (Part II), but also shows how to automate the compliance management process based on SAP GRC (Part III). He thus addresses the current need for solutions for implementing an integrated GRC system in an organization, especially focusing on the continuous control monitoring topics. Maxim Chuprunov mainly targets compliance experts, auditors, SAP project managers and consultants responsible for GRC products as readers for his book. They will find indispensable information for their daily work from the first to the last page. In addition, MBA, management information system students as well as senior managers like CIOs and CFOs will find a wealth of valuable information on compliance in the SAP ERP environment, on GRC in general and its implementation in particular.

Internal Audit Handbook

Management with the SAP®-Audit Roadmap
Author: Henning Kagermann,William Kinney,Karlheinz Küting,Claus-Peter Weber
Publisher: Springer Science & Business Media
ISBN: 9783540708872
Category: Business & Economics
Page: 610
View: 7961

Continue Reading →

This book offers a comprehensive, up-to-date presentation of the tasks and challenges facing internal audit. It presents the Audit Roadmap, the process model of internal auditing developed at SAP® which describes all stages of an audit. Coverage provides information on issues such as the identification of audit fields, the annual audit planning, the organization and execution of audits as well as reporting and follow-up. The handbook also discusses management-related subjects. Separate chapters are dedicated to special topics like IT or SOX audits.

SAP GRC For Dummies


Author: Denise Vu Broady,Holly A. Roland
Publisher: John Wiley & Sons
ISBN: 9781118052594
Category: Computers
Page: 342
View: 7208

Continue Reading →

Governance, risk, and compliance—these three big letters can add up to one giant headache. But GRC doesn't have to be a boil on your corporate behind. SAP GRC For Dummies untangles the web of regulations that confronts your company and introduces you to software solutions the not only keep you in compliance, but also make your whole enterprise stronger. This completely practical guide starts with a big-picture look and GRC and explains how it can help your organization grow. You'll find out why these regulations were enacted; what you can do to ensure compliance; and how compliance can help you prevent fraud, bolster your corporate image, and envision and execute the best possible corporate strategy. This all-business handbook will help you: Understand the impact of Sarbanes-Oxley Control access effectively Color your company a greener shade of green Source or sell goods internationally Keep your employees safe and healthy Ensure that data is kept secret and private Manage information flow in all directions Enhance your public image through sustainability reporting Use GRC as the basis for a powerful new corporate strategy Complete with enlightening lists of best practices for successful GRC implementation and conducting global trade, this book also puts you in touch with thought leadership Web sights where you can deepen your understanding of GRC-based business strategies. You can't avoid dealing with GRC, but you can make the most of it with a little help from SAP GRC For Dummies.

Implementing Effective IT Governance and IT Management


Author: Gad J. Selig
Publisher: Van Haren
ISBN: 9401805288
Category: Education
Page: N.A
View: 3359

Continue Reading →

This book is a revised edition of the best selling title Implementing IT Governance (ISBN 978 90 8753 119 5).For trainers free additional material of this book is available. This can be found under the "Training Material" tab. Log in with your trainer account to access the material.In all enterprises around the world, the issues, opportunities and challenges of aligning IT more closely with the organization and effectively governing an organization s IT investments, resources, major initiatives and superior uninterrupted service is becoming a major concern of the Board and executive management. An integrated and comprehensive approach to the alignment, planning, execution and governance of IT and its resources has become critical to more effectively align, integrate, invest, measure, deploy, service and sustain the strategic and tactical direction and value proposition of IT in support of organizations.Much has been written and documented about the individual components of IT Governance such as strategic planning, demand management, program and project management, IT service management, strategic sourcing and outsourcing, performance management, metrics, compliance and others. Much less has been written about a comprehensive and integrated approach for IT/Business Alignment, Planning, Execution and Governance. This title fills that need in the marketplace and offers readers structured and practical solutions using the best of the best practices available today. The book is divided into two parts, which cover the three critical pillars necessary to develop, execute and sustain a robust and effective IT governance environment:- Leadership, people, organization and strategy,- IT governance, its major component processes and enabling technologies.Each of the chapters also covers one or more of the following action oriented topics: - the why and what of IT: strategic planning, portfolio investment management, decision authority, etc.; - the how of IT: Program/Project Management, IT Service Management (including ITIL); Strategic Sourcing and outsourcing; performance, risk and contingency management (including COBIT, the Balanced Scorecard etc.) and leadership, team management and professional competences.

Implementing IT Governance - A Pocket Guide


Author: Gad J. Selig
Publisher: Van Haren
ISBN: 9087538170
Category: Education
Page: 210
View: 9812

Continue Reading →

The issues, opportunities and challenges of aligning information technology more closely with an organization and effectively governing an organization s Information Technology (IT) investments, resources, major initiatives and superior uninterrupted service is becoming a major concern of the Board and executive management in enterprises on a global basis. An integrated and comprehensive approach to the alignment, planning, execution and governance of IT and its resources has become critical to more effectively align, integrate, invest, measure, deploy, service and sustain the strategic and tactical direction and value proposition of IT in support of organizations. Much has been written and documented about the individual components of IT Governance such as strategic planning, demand (portfolio investment) management, program and project management, IT service management and delivery, strategic sourcing and outsourcing, performance management and metrics, like the balanced scorecard, compliance and others. Much less has been written about a comprehensive and integrated IT/Business Alignment, Planning, Execution and Governance approach. This new title fills that need in the marketplace and gives readers a structured and practical solutions using the best of the best principles available today. The book is divided into nine chapters, which cover the three critical pillars necessary to develop, execute and sustain a robust and effective IT governance environment - leadership and proactive people and change agents, flexible and scalable processes and enabling technology. Each of the chapters also covers one or more of the following action oriented topics: demand management and alignment (the why and what of IT strategic planning, portfolio investment management, decision authority, etc.); execution management (includes the how - Program/Project Management, IT Service Management and Delivery with IT Infrastructure Library {ITIL} and Strategic Sourcing and outsourcing); performance, risk and contingency management (e.g. includes COBIT, the balanced scorecard and other metrics and controls); and leadership, teams and people skills. Endorsements 'Selig has brought together his years of practical experience and his academic training to produce a valuable resource on how to successfully manage IT. He uses IT governance as the focal point for executing best practices to create alignment between IT and the business. In today s marketplace, where no organization can compete effectively without alignment, this book can become the executive handbook for IT management'Christine V. Bullen, Senior Lecturer, Howe School of Technology Management, Stevens Institute of Technology 'Dr. Selig has written an extremely comprehensive book on IT Governance. It is so comprehensive that today's IT leader need look at few other sources to ensure that they have nailed what it takes to lead a world-class IT organization. It provides details, yet serves as a easily reference-able road-map for today's busy IT executives it's a great desktop companion!'Stu Werner, Executive Vice President and CIO, Li & Fong, U.S.A. 'Dr. Selig s book on this topic is a great resource for all IT practitioners and brings together every critical aspect relating to IT governance. This book lays out a roadmap to executing within a solid governance model. It looks at all aspects of establishing, marinating, growing and sustaining an IT ecosystem. The combination of case studies and disciplined approaches to building well structured processes, committed leaders and change agents will help the board, executive management and most of all, CIO s and IT professionals think through what has worked, what can work and how to deployIT governance successfully. I very much enjoyed reading the chapters. I think you have a great book and I look forward to reading it when it comes out'Dick LeFave, CIO, Sprint Nextel 'In an era when strong IT governance is an increasingly critical component of visionary business and technology leadership, Dr Selig's book provides a welcome compendium of successful practices. Experienced leaders will find it a valuable reference, while early-career managers will appreciate the clear, actionable framework for developing high-quality, sustainable governance models of their own'Hank Zupnick, CIO, GE Real Estate 'Dr Selig's book is a well thought out and comprehensive reference guide on the successful governance of IT in context of the larger business. It successfully combines practical check lists and governance models with real world insights in an easy to read format.The book is organized into logical sections that make it easy to find topics of relevance. This book will be useful when setting up a new governance model or challenging and improving what is in place today. It is written in a format that allows the reader to stand back from the detail and look a the bigger picture, recognizing that an integrated approach to IT governance is critical to the overall health of a successful business.Dr Selig has captured this complex topic in a way that will prove a valuable reference for all levels of Executives and managers that are involved in IT governance' Nicholas Willcox, Director IT, Unilever Americas 'Dr. Selig s blend of executive IT and senior level business experience in major companies combined with many years of teaching experience and research effort have enabled him to create a unique book that blends many different components and perspectives on IT Governance into a single framework. Written for senior and aspiring IT and business leaders, his book draws upon practical experience, research, and best practices as well as the collective wisdom of the many senior IT leaders he has interacted with in teaching IT Governance. A five star rating!'James R. Shea, Director, Syracuse University, Center for Business Information Technologies 'Dr. Selig has created a veritable IT Governance Encyclopedia for the 21st century IT executive. If something isn t covered here, you probably don t need to know it'Peter Schay, Executive VP, The Advisory Council

SAP HANA Security Guide


Author: Jonathan Haun
Publisher: SAP Press
ISBN: 9781493214419
Category: Computers
Page: 541
View: 3706

Continue Reading →

How do you protect and defend your SAP HANA database and application development platform? This comprehensive guide details your options, including privileges, encryption, and more. Learn how to secure database objects, provision and maintain user accounts, and develop and assign roles. Then take an in-depth look at authentication and certificate management before seeing how to enable auditing and security tracing. Protect your SAP HANA system! Privileges and Roles Master the SAP HANA privilege types--system, object, package, analytic, and application--and learn to create and assign database and repository roles using SAP HANA Studio and SQLScript Authentication and Encryption Learn to use Kerberos, SAML, and native authentication with step-by-step instructions and secure internal and external communication using encryption and SSL certificates Monitoring Activate rules-based monitors to record SAP HANA security-related activities, enable auditing in your system, and use security tracing to keep an eye on your roles and privileges Highlights: SAP HANA Studio Privileges Roles Database objects User accounts Authentication Lifecycle management Auditing Security tracing Certificate management Encryption

IBM Software for SAP Solutions


Author: Yaro Dunchych,Peter Bahrs,Khirallah Birkler,Bernd Eberhardt,Navneet Goyal,James Hunter,Derek Jennings,Joe Kaczmarek,Michel Laaroussi,Michael Love,Stefan Momma,Nick Norris,Martin Oberhofer,Manfred Oevers,Paul Pacholski,Andrew Stalnecker,Jörg Stolzenberg,Pierre Valiquette,IBM Redbooks
Publisher: IBM Redbooks
ISBN: 073844104X
Category: Computers
Page: 352
View: 9280

Continue Reading →

SAP is a market leader in enterprise business application software. SAP solutions provide a rich set of composable application modules, and configurable functional capabilities that are expected from a comprehensive enterprise business application software suite. In most cases, companies that adopt SAP software remain heterogeneous enterprises running both SAP and non-SAP systems to support their business processes. Regardless of the specific scenario, in heterogeneous enterprises most SAP implementations must be integrated with a variety of non-SAP enterprise systems: Portals Messaging infrastructure Business process management (BPM) tools Enterprise Content Management (ECM) methods and tools Business analytics (BA) and business intelligence (BI) technologies Security Systems of record Systems of engagement The tooling included with SAP software addresses many needs for creating SAP-centric environments. However, the classic approach to implementing SAP functionality generally leaves the business with a rigid solution that is difficult and expensive to change and enhance. When SAP software is used in a large, heterogeneous enterprise environment, SAP clients face the dilemma of selecting the correct set of tools and platforms to implement SAP functionality, and to integrate the SAP solutions with non-SAP systems. This IBM® Redbooks® publication explains the value of integrating IBM software with SAP solutions. It describes how to enhance and extend pre-built capabilities in SAP software with best-in-class IBM enterprise software, enabling clients to maximize return on investment (ROI) in their SAP investment and achieve a balanced enterprise architecture approach. This book describes IBM Reference Architecture for SAP, a prescriptive blueprint for using IBM software in SAP solutions. The reference architecture is focused on defining the use of IBM software with SAP, and is not intended to address the internal aspects of SAP components. The chapters of this book provide a specific reference architecture for many of the architectural domains that are each important for a large enterprise to establish common strategy, efficiency, and balance. The majority of the most important architectural domain topics, such as integration, process optimization, master data management, mobile access, Enterprise Content Management, business intelligence, DevOps, security, systems monitoring, and so on, are covered in the book. However, there are several other architectural domains which are not included in the book. This is not to imply that these other architectural domains are not important or are less important, or that IBM does not offer a solution to address them. It is only reflective of time constraints, available resources, and the complexity of assembling a book on an extremely broad topic. Although more content could have been added, the authors feel confident that the scope of architectural material that has been included should provide organizations with a fantastic head start in defining their own enterprise reference architecture for many of the important architectural domains, and it is hoped that this book provides great value to those reading it. This IBM Redbooks publication is targeted to the following audiences: Client decision makers and solution architects leading enterprise transformation projects and wanting to gain further insight so that they can benefit from the integration of IBM software in large-scale SAP projects. IT architects and consultants integrating IBM technology with SAP solutions.

Continuous Auditing

Theory and Application
Author: David Y. Chan,Victoria Chiu,Miklos A. Vasarhelyi
Publisher: Emerald Group Publishing
ISBN: 1787434656
Category: Business & Economics
Page: 360
View: 5521

Continue Reading →

Continuous Auditing provides academics and practitioners with a compilation of select continuous auditing design science research, and it provides readers with an understanding of the underlying theoretical concepts of a continuous audit, ideas on how continuous audit can be applied in practice, and what has and has not worked in research.

Discover SAP ERP Financials


Author: Manish Patel
Publisher: N.A
ISBN: 9781592294299
Category: Computers
Page: 604
View: 7858

Continue Reading →

Discover what SAP ERP Financials is and whether it s right for your business Improve your financial processes and save money with this powerful software Explore the major modules and their application for financial processes You know that business financials are an essential part of every business, large or small, but do you how SAP ERP Financials can make it easier? From basic accounting and complex financial audits to reporting, SAP ERP Financials offers vast, diverse and customizable solutions. This title offers a very detailed, reader-friendly reference that will give you an in-depth overview of the key components of SAP ERP Financials. Perfect for new users, decision-makers, and power users, with this title you will learn how to improve your efficiency in key financial areas, including profitability analysis, financial supply chain management, cost-accounting, and more. Updated for SAP ERP 6.0, EhP 5 and 6 with an expanded focus on real world scenarios and practical case-studies.

The SAP Project

More Than a Survival Guide
Author: Gerald Sullivan
Publisher: N.A
ISBN: 9781592299492
Category: Computers
Page: 450
View: 6683

Continue Reading →

Suitable as a reference before starting your next SAP implementation project, this title comes with a preview of what to expect, what questions to ask, and when to take which steps. It also includes: Project requirements; SAP implementation method; Logistical tasks; System integration and contracting; Project planning; and, Work stream model.

Testing SAP Solutions


Author: Markus Helfen,Hans Martin Trauthwein
Publisher: SAP PRESS
ISBN: 9781592293667
Category: Computers
Page: 716
View: 6537

Continue Reading →

No testing means no Go-live! But how do you make sure that your tests are comprehensive and deliver valid results? This complete guide to test planning and test execution answers all of your questions. Not only will you learn the basics for a test strategy and a test methodology that fit the requirements of your solution, you will also understand functionality and usage of all the tools SAP and their partners provide for testing: Extensive, practical chapters on the most important tools, SAP Solution Manager and eCATT, as well as substantial coverage of TDMS, HP Quality Center, and SAP LoadRunner show exactly how to perform functional and performance tests. In addition, for each tool you'll find a real-life project report from a well known SAP customer.For this second edition, the book has been thoroughly revised and extended by more than 350 pages. New topics include SAP TAO, HP Quality Center, RunSAP, and SOA testing.

Leading Change


Author: John P. Kotter
Publisher: Harvard Business Press
ISBN: 1422186431
Category: Business & Economics
Page: 194
View: 8782

Continue Reading →

Offers advice on how to lead an organization into change, including establishing a sense of urgency, developing a vision and strategy, and generating short-term wins.

Introduction to Information Systems

Enabling and Transforming Business
Author: R. Kelly Rainer,Casey G. Cegielski
Publisher: John Wiley & Sons
ISBN: 0470473525
Category: Computers
Page: 528
View: 665

Continue Reading →

Information technology professionals will gain invaluable information with this updated resource on how to connect concepts to key business areas. These areas include accounting, finance, marketing, management, human resources, and operations. The new edition provides concise and accessible coverage of core IT topics. Do It Yourself activities show them how to apply the information on the job. Technology professionals will then be able to discover how critical IT is to each functional area and every business.

Integrating IBM Security and SAP Solutions


Author: Axel Buecker,Ivy Chiu,Kenny Chow,Ingo Dressler,Anthony Ferguson,Vaughan Harper,David Moore,Zoran Radenkovic,Guy Redding,John Robinson,Sascha Schefenacker,Franz Wolfhagen,IBM Redbooks
Publisher: IBM Redbooks
ISBN: 0738436569
Category: Computers
Page: 434
View: 5222

Continue Reading →

Many large and medium-sized organizations have made strategic investments in the SAP NetWeaver technology platform as their primary application platform. In fact, SAP software is used to manage many core business processes and data. As a result, it is critical for all organizations to manage the life cycle of user access to the SAP applications while adhering to security and risk compliance requirements. In this IBM® Redbooks® publication, we discuss the integration points into SAP solutions that are supported by the IBM Security access and identity management product capabilities. IBM Security software offers a range of identity management (IdM) adapters and access management components for SAP solutions that are available with IBM Tivoli® Identity Manager, IBM Tivoli Directory Integrator, IBM Tivoli Directory Server, IBM Access Manager for e-business, IBM Tivoli Access Manager for Enterprise Single Sign-On, and IBM Tivoli Federated Identity Manager. This book is a valuable resource for security officers, consultants, administrators, and architects who want to understand and implement an identity management solution for an SAP environment.