In his session at GRC 2013, compliance and security Marc Jackson makes the case for auditing your SAP GRC systems – something not to be overlooked in your system audits. In a recent online Q&A More...

Despite their busy schedules at GRC 2013 in Las Vegas, Turnkey Consulting’s Richard Hunt and Troy Konison took a few minutes to talk with SAPinsider’s Dave Hannon about a key question for More...

The following is a preview of the session "Preventing Cyber Attacks: How to Address 11 Risks That Could Leave Your SAP System Vulnerable" by Mariano Nunez of Onapsis that will be presented at GRC 2013 More...

by Ken Murphy @KMurphyWisPubs For a movie that came out when “cloud” was still just a meteorological term, “Heat” nails today’s enterprise cloud security concerns. The More...

I recently moderated a Q&A on SAP Access Control 10.0 workflow with Turnkey Consulting’s Simon Persin. There was a lot of discussion on changes to approvals with 10.0 and MSMP and, not surpris More...

In business, we strive to find ways to smooth the path of information from one person or department to another where that data can grow in significance, becoming more meaningful in its purpose and add More...

I recently moderated an online Q&A with Kurt Hollis on the GRC 10.0 architecture. During this one-hour Forum, Kurt Hollis took questions on the 10.0 release of the SAP BusinessObjects GRC suite, its n More...

Insider Learning Network is hosting a live question and answer forum on the technical and architectural considerations of SAP BusinessObjects GRC 10.0 on February 23rd from 12:30-1:30 pm EST with Kurt More...

You’ve read many stories about SAP applications this year. You’ve read about risk management, segregation of duties, access control, financial compliance. I hope many of these articles hel More...

Tip Doctor, Insider Learning Network. The following excerpt has been taken from James Roeske’s presentation “Minimizing the cost of compliance, audit, security, and risk management in fin More...

I recently moderated a web forum with James Roeske of Savera Systems on preventing SoD violations with scheduled and automated user access reviews. James took questions on timelines for implement auto More...

Insider Learning Network is hosting a live question and answer forum on preventing SoD violations with scheduled and automated user access reviews on September 28th from 12:30-1:30 pm EDT with James R More...

In a recent post, I mentioned how there was a repeated refrain in the Solution Manager space at our SAPinsider IT 2011 event, "ERP for IT". The phrase was a condensed way for SAP to communicate that I More...

I recently moderated a web forum with data security experts Richard Hunt and Tom Venables on the authorizations strategies introduced in BW 7.0 and the challenges of coordinating security between BW a More...

 In a recent blog ("Share the Load") I cited a finding in a survey by the Economist Intelligence Unit (EIU) that businesses in general aren’t sharing information about risk failures. Plea More...