Which SAP versions can be covered by the analyses ?

It is possible to cover SAP ECC6, S4/HANA on premise or cloudified versions.

What kind of data is collected for these analyses ?

Only the data required for analysis (user accounts, associated privileges) is collected, pseudonymized where necessary, and loaded into our analysis tool.

How to provide the data needed for analysis ?

The data analyzed will generally be extracted from your information system by executing a script that we communicate to your IT team.

Where is the analyzed data stored ?

The data analyzed is stored within PwC's IT infrastructures. These IT infrastructures boast high levels of security in line with best practices, and are regularly certified following independent audits (e.g. SOC 2 report).

Risk

Compliance & Risk Management

Asset-based expertise

SAP Access Diagnostic

Analyze your SAP ERP security and configuration

Your challenge

The configuration parameters of technical components and automated controls, as activated, generally contain errors or are not optimized.

The rights granted to users are generally inadequately allocated, leading to a risk of security, error or fraud due to non-compliance with separation of duties (SOD) principles.

In addition, access and use of the SAP system can lead to over- or under-licensing.

Our dedicated ACE tool enables you to carry out multi-criteria analyses, whatever your SAP version, and to detect anomalies, incompatibilities and conflicts within your system.

On the basis of these analyses, you can then correct and adjust system parameters or user rights, or consider implementing compensatory controls.

Analysis of SAP Basis

Testing of SAP Basis components (access and configuration) and documentation of the analysis on the basis of a standardized template in line with the global SAP audit work programs developed by PwC.

SAP Business process and SOD analysis

Testing of SAP business process access (task/SOD segregation and sensitive access) and/or configuration testing of automatic controls. Fully compatible with S/4 systems, with a focus on purchasing, sales and financial processes.

HANA database audit

Review of the main HANA database access and configuration controls.

Analysis of the ruleset SAP GRC

Comparison of all GRC rules with all ACE or Golden rules, to identify weaknesses and suggest improvements.

Audit SAP GRC application controls

Review of automated controls in SAP GRC Access Control related to user access provision and emergency access management (firefighter).

SAP license audit

Analysis of acquired SAP licenses compared with actual access granted and system usage, to identify users with incorrect license types and cases of excessive or insufficient licenses.

Benefits of SAP Access Diagnostic

Agility

We offer you easy analysis via a non-intrusive, easy-to-implement solution or via a subscription to run analysis at a controlled cost in "Managed Services" mode.

Ease of adaptation

Our tool natively integrates libraries of best-practice parameterization rules (golden rules), as well as standard SOD conflicts, either pre-configured or adapted to your SAP version (ruleset).

Examples of mission

Energy company: Identification and analysis of SOD conflicts, audit of basis components and HANA database.

Digital company: License optimization audit.

Utility company: SOD analysis.

Pricing

These products might interest you

UAM (User Access Management) Total Control : Evaluate and strengthen internal control regarding user access management to your IT system

Discover

SAP Access Diagnostic

Your challenge

Features of SAP Access Diagnostic

Analysis of SAP Basis

SAP Business process and SOD analysis

HANA database audit

Analysis of the ruleset SAP GRC

Audit SAP GRC application controls

SAP license audit

Benefits of SAP Access Diagnostic

Examples of mission

Pricing

FAQ

Downloads

Global Economic Crime and Fraud Survey

Chief Data Officer Study

These products might interest you

Can't find what you're looking for?

Your challenge

Features of SAP Access Diagnostic

Analysis of SAP Basis

SAP Business process and SOD analysis

HANA database audit

Analysis of the ruleset SAP GRC

Audit SAP GRC application controls

SAP license audit

Benefits of SAP Access Diagnostic

Examples of mission

Pricing

FAQ

.__m__-R1aqdrbbbnaurraqr5bm{font-size:calc(1rem * var(--mantine-scale));}@media(min-width: 62em){.__m__-R1aqdrbbbnaurraqr5bm{font-size:calc(1.125rem * var(--mantine-scale));}}Which SAP versions can be covered by the analyses ?

.__m__-R1aqlrbbbnaurraqr5bm{font-size:calc(1rem * var(--mantine-scale));}@media(min-width: 62em){.__m__-R1aqlrbbbnaurraqr5bm{font-size:calc(1.125rem * var(--mantine-scale));}}What kind of data is collected for these analyses ?

.__m__-R1aqtrbbbnaurraqr5bm{font-size:calc(1rem * var(--mantine-scale));}@media(min-width: 62em){.__m__-R1aqtrbbbnaurraqr5bm{font-size:calc(1.125rem * var(--mantine-scale));}}How to provide the data needed for analysis ?

.__m__-R1ar5rbbbnaurraqr5bm{font-size:calc(1rem * var(--mantine-scale));}@media(min-width: 62em){.__m__-R1ar5rbbbnaurraqr5bm{font-size:calc(1.125rem * var(--mantine-scale));}}Where is the analyzed data stored ?

Downloads

Global Economic Crime and Fraud Survey

Chief Data Officer Study

These products might interest you

Can't find what you're looking for?