SAP Business Intelligence Authorisations
Admitted, SAP Business Intelligence authorisations often become cumbersome, and very quickly extensive and complex if not done correctly“ according to CEO Henrik Bang, Innologic A/S.
Insider Legislation & SOX “It is extremely relevant to know who has access to what. Just think of the latest stories in the media about insider insight, lack of personal data security or the Sarbanes-Oxley rules “
Accountant remarks “The auditor firms are naturally very attentive to of access control and security flaws in their audit. If things are not in order, annotations are distributed in the audit reports and in the worst-case scenario in the external accounts.“
Critical Business Matters CEO Henrik Bang continues ”We have seen that companies have maintained the same authorisation solution from the time when the system supported one simple reporting solution with very few users until today, when they now cover all functional areas with thousands of users. There is now increase pressure on these solutions as regards maintenance of employee accesses and the security is quickly challenged making extremely confidential and business-critical data vulnerable.“
Many factors “Although the company’s external and internal audit and IT security seem to be very careful, there is often a need to combine the business knowledge of legislation and internal regulations with technical skills in SAP authorisations. This not only guarantees that roles are set up correctly, it also ensures that components such as system performance and maintenance are taken into account, so that the full value of business intelligence solution can be realized. And this is where our company enters the scene.” says Henrik Bang and concludes:
Review of authorizations “We experience increasing interest in using our SAP technical skills and broad knowledge within authorisation for a review of the company’s SAP BI authorizations. We can also automate the manual handling via a data-driven solution, so employees do not have to spend unnecessary time on the authorisation maintenance.