Community
Application Development and Automation Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

security strategy

Go to solution
Former Member

‎2007 Jan 30 8:56 PM

0 Likes
609

Hi SAP Gurus,

I have multiple questions.

first, let me explain situation

- New implementation of NW04S + ECC5

- Used are BI7 only , GL,FI/CO,TR ( all financial products)

- Small-medium size company with 3-4 company codes.

- SOX is a big issue but no Versa.

- CUA implemented, (don't know why land scape is very small)

Question 1

I need a security strategy template to out line a security strategy.

If some on have an example that I can follow, will appreciate it, other wise if I can be pointed in right direction.

Question 2

What should be my security design strategy, any suggestions in this kind of situation.

Thanks

T.Jay

1 ACCEPTED SOLUTION
Read only

Go to solution
Former Member

‎2007 Jan 31 3:21 PM

0 Likes
525

Hi,

1. Security strategy is company specific and its company property.

2. Design your self.

yes. SOX is a big issue.

first be specific about the job roles(positions) and gather required transactions.

then create roles or you can copy predefined roles.

then find out the critical and conflict transactions across the business roles, and try to exclude them.

it s not that much easy to prepare and implement, but it s possible.

Thanks,

Praveen.

4 REPLIES 4
Read only

Go to solution
Former Member

‎2007 Jan 31 3:21 PM

0 Likes
526

Hi,

1. Security strategy is company specific and its company property.

2. Design your self.

yes. SOX is a big issue.

first be specific about the job roles(positions) and gather required transactions.

then create roles or you can copy predefined roles.

then find out the critical and conflict transactions across the business roles, and try to exclude them.

it s not that much easy to prepare and implement, but it s possible.

Thanks,

Praveen.

Read only

Go to solution
Former Member

‎2007 Jan 31 4:25 PM

0 Likes
525

Hi TJ,

Check this info ..can be helpful...

http://www.sapsecurityonline.com/sox_sod/sod_matrix_fi.htm

Br,

Sri

Award points for helpful answers

Read only

Go to solution
Former Member

‎2007 Feb 06 9:49 PM

0 Likes
525

Thank you all for your inputs.

Security document is in fact a part of functional / management team responsibility in which you help them with your inputs and thoughts as it varies with business processes.

Thank you again.

TJ

Message was edited by:

Tee Jay