Executing an SAP security redesign is like fixing up a house. If the structure is sound, it makes sense to work with what you have — patch up the roof, knock out a wall here, add a room there, and put a fresh coat of paint on everything, and you’re done.
But what if the house is old, decrepit and crumbling? You can’t just build an addition if the structure isn’t sound, or if there’s mold growing in all of the walls. Even minor changes can require major foundation work. At a certain point, there’s just no point in fixing it all.
Many organizations have an SAP security landscape that’s past the point of fixing. Their sagging SOD rules are patched together out of complex and inconsistent pieces. Their SAP security model has gaps like holes in the floor, just waiting to snap an ankle. Their non-functional change management process is like a decaying foundation, slowly collapsing around them. And unsuccessful audit remediations are piled up everywhere, like mounds of fetid debris.
An SAP Security Redesign Can Replace an Unusable Security Model
This situation is depressingly common among mature businesses moving away from document-centric controls. Decades of ad hoc security tend to build up into complicated and inconsistent habits. Trying to build on top of these controls drastically complicates the SAP security model. For example, before we automated SAP controls for Carlisle Construction materials, they worked with an internal SAP security professional who attempted to manually revamp their security model. They ended up with an unusable system, with 3,000 roles for just 700 internal users.
Setting up a GRC system with usable output can also be tremendously difficult without an SAP security redesign. Companies often end up trying to reverse-engineer their business processes and compliance procedures, and have to customize their GRC software or create complex workarounds. Output is often completely indecipherable, and typically is missing some needed functionality, making remediation and even analysis difficult.
Symmetry Can Make an SAP Security Redesign Easy
The good news is that an SAP security redesign doesn’t have to be as stressful as rebuilding a house. It doesn’t take permits, heavy equipment and difficult design decisions. It just takes a partner who understand SAP security design, and knows how to build a system that lets you do your job while minimizing risk.
Symmetry uses a combination of cutting-edge software tools and industry-leading security expertise to reduce the timeline and cost of an SAP security design by over 50%. Our ControlPanelGRC SAP® Security Acceleration Suite helps with both routine security troubleshooting and comprehensive SAP security redesign tasks. From streamlining SAP password resets across your SAP landscape to physically constructing your new security model in the few clicks of a button.
Our SAP Security Complete PlusGRC service goes even further, providing a complete security and compliance solution from planning an SAP security redesign to supporting continuous SAP security and compliance. We can provide any level of support your organization needs, from empowering your internal SAP security team with the tools and training they need, to providing a complete security and compliance solution for your entire organization.
Contact us to learn how we can build you a better SAP security solution, from the ground up.