{"id":146386,"date":"2024-10-16T07:00:00","date_gmt":"2024-10-16T05:00:00","guid":{"rendered":"http:\/\/e3mag.com\/?p=146386"},"modified":"2024-10-14T11:41:00","modified_gmt":"2024-10-14T09:41:00","slug":"consistent-grc-for-sap-cloud-applications","status":"publish","type":"post","link":"https:\/\/e3mag.com\/en\/consistent-grc-for-sap-cloud-applications\/","title":{"rendered":"Consistent GRC for SAP cloud applications"},"content":{"rendered":"<p>Whether in procurement, accounts payable\/receivable or customer relationship management, the joint assignment of rights in different applications can lead to SoD conflicts, especially with cloud solutions. To counter this, companies need to develop a cross-application view of their access management that includes cloud applications such as SAP SuccessFactors, Ariba or Concur in addition to securing and monitoring on-premises applications.<\/p>\n\n\n\n<p>However, as Holger Flint, Head of the SAP Basis Competence Center at IT service provider Akquinet, points out, this is easier said than done: \"Implementing a cloud strategy appropriately is no trivial task due to the complexity and in-depth processes involved.\" The provider of SAP security and compliance services therefore relies on tailor-made software from its long-standing partner Pathlock. <\/p><div id=\"great-3829851147\" class=\"great-fullsize-content-en\" style=\"margin-bottom: 20px;\"><a data-no-instant=\"1\" href=\"https:\/\/www.youtube.com\/watch?v=6ZGXMPyM-nU\" rel=\"noopener\" class=\"a2t-link\" target=\"_blank\" aria-label=\"banner_26-04_29_1200x150\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/e3mag.com\/wp-content\/uploads\/2026\/03\/banner_26-04_29_1200x150-1.jpg\" alt=\"\"  srcset=\"https:\/\/e3mag.com\/wp-content\/uploads\/2026\/03\/banner_26-04_29_1200x150-1.jpg 1200w, https:\/\/e3mag.com\/wp-content\/uploads\/2026\/03\/banner_26-04_29_1200x150-1-400x50.jpg 400w, https:\/\/e3mag.com\/wp-content\/uploads\/2026\/03\/banner_26-04_29_1200x150-1-768x96.jpg 768w, https:\/\/e3mag.com\/wp-content\/uploads\/2026\/03\/banner_26-04_29_1200x150-1-100x13.jpg 100w, https:\/\/e3mag.com\/wp-content\/uploads\/2026\/03\/banner_26-04_29_1200x150-1-480x60.jpg 480w, https:\/\/e3mag.com\/wp-content\/uploads\/2026\/03\/banner_26-04_29_1200x150-1-640x80.jpg 640w, https:\/\/e3mag.com\/wp-content\/uploads\/2026\/03\/banner_26-04_29_1200x150-1-720x90.jpg 720w, https:\/\/e3mag.com\/wp-content\/uploads\/2026\/03\/banner_26-04_29_1200x150-1-960x120.jpg 960w, https:\/\/e3mag.com\/wp-content\/uploads\/2026\/03\/banner_26-04_29_1200x150-1-1168x146.jpg 1168w, https:\/\/e3mag.com\/wp-content\/uploads\/2026\/03\/banner_26-04_29_1200x150-1-18x2.jpg 18w, https:\/\/e3mag.com\/wp-content\/uploads\/2026\/03\/banner_26-04_29_1200x150-1-600x75.jpg 600w\" sizes=\"(max-width: 1200px) 100vw, 1200px\" width=\"1200\" height=\"150\"  style=\" max-width: 100%; height: auto;\" \/><\/a><\/div>\n\n\n\n<div class=\"wp-block-stackable-image stk-block-image stk-block stk-7835ab6\" data-block-id=\"7835ab6\"><style>.stk-7835ab6 .stk-img-figcaption{text-align:center !important;}.stk-7835ab6 .stk-img-wrapper{width:70% !important;}<\/style><figure><span class=\"stk-img-wrapper stk-image--shape-stretch stk--has-lightbox\"><img loading=\"lazy\" decoding=\"async\" class=\"stk-img wp-image-146390\" src=\"https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/Flint-Holger-web.jpg\" width=\"1417\" height=\"992\" srcset=\"https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/Flint-Holger-web.jpg 1417w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/Flint-Holger-web-400x280.jpg 400w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/Flint-Holger-web-1200x840.jpg 1200w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/Flint-Holger-web-768x538.jpg 768w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/Flint-Holger-web-100x70.jpg 100w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/Flint-Holger-web-480x336.jpg 480w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/Flint-Holger-web-640x448.jpg 640w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/Flint-Holger-web-720x504.jpg 720w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/Flint-Holger-web-960x672.jpg 960w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/Flint-Holger-web-1168x818.jpg 1168w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/Flint-Holger-web-18x12.jpg 18w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/Flint-Holger-web-600x420.jpg 600w\" sizes=\"auto, (max-width: 1417px) 100vw, 1417px\" \/><\/span><figcaption class=\"stk-img-figcaption\">\"Implementing a cloud strategy appropriately is no trivial task due to the complexity and in-depth processes involved.\"<br><strong>Holger Flint<\/strong>, Head of Competence Center SAP Basis, Akquinet<\/figcaption><\/figure><\/div>\n\n\n\n<p>Holistic solutions such as these offer a joint cross-application SoD check with dashboard-based display of the current risk status for both on-premises and cloud solutions. Potential segregation of duties risks are continuously identified during the application process, at the time of allocation and also during the test cycles. Automated SoD and risk analysis as well as automated reporting for all common business applications - whether SAP ERP, S\/4 Hana, SAP cloud applications, Microsoft Dynamics or Salesforce - help to meet legal requirements in a time-saving manner. The preconfigured sets of rules are ready for immediate use and can be easily customized.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Focus on superuser concepts<\/strong><\/h2>\n\n\n\n<p>Ralf Kempf, IT Security Evangelist and Managing Director of Pathlock Germany, emphasizes: \"The growing complexity makes it essential to keep SoD concepts up to date, present them transparently and harmonize them. It is important: Emergency concepts can no longer be viewed in isolation.\" This is because they are still rarely considered together and cause a significant and unnecessary security gap if super users have far more authorizations than they should according to the SoD concept. \"This is neither expedient nor practicable for a holistic security strategy,\" explains Kempf.<\/p>\n\n\n\n<div class=\"wp-block-stackable-image stk-block-image stk-block stk-7e2db2f\" data-block-id=\"7e2db2f\"><style>.stk-7e2db2f .stk-img-figcaption{text-align:center !important;}.stk-7e2db2f .stk-img-wrapper{width:70% !important;}<\/style><figure><span class=\"stk-img-wrapper stk-image--shape-stretch\"><img loading=\"lazy\" decoding=\"async\" class=\"stk-img wp-image-144822\" src=\"https:\/\/e3mag.com\/wp-content\/uploads\/2024\/08\/RalfKempf_4-3_2024-scaled.jpg\" width=\"1440\" height=\"1080\" srcset=\"https:\/\/e3mag.com\/wp-content\/uploads\/2024\/08\/RalfKempf_4-3_2024-scaled.jpg 1440w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/08\/RalfKempf_4-3_2024-400x300.jpg 400w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/08\/RalfKempf_4-3_2024-1200x900.jpg 1200w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/08\/RalfKempf_4-3_2024-768x576.jpg 768w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/08\/RalfKempf_4-3_2024-100x75.jpg 100w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/08\/RalfKempf_4-3_2024-480x360.jpg 480w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/08\/RalfKempf_4-3_2024-640x480.jpg 640w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/08\/RalfKempf_4-3_2024-720x540.jpg 720w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/08\/RalfKempf_4-3_2024-960x720.jpg 960w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/08\/RalfKempf_4-3_2024-1168x876.jpg 1168w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/08\/RalfKempf_4-3_2024-16x12.jpg 16w, https:\/\/e3mag.com\/wp-content\/uploads\/2024\/08\/RalfKempf_4-3_2024-600x450.jpg 600w\" sizes=\"auto, (max-width: 1440px) 100vw, 1440px\" \/><\/span><figcaption class=\"stk-img-figcaption\">\"The growing complexity makes it essential to keep SoD concepts up to date, present them transparently and harmonize them.\"<br><strong>Ralf Kempf<\/strong>IT Security Evangelist and Managing Director, Pathlock<\/figcaption><\/figure><\/div>\n\n\n\n<h2 class=\"wp-block-heading\">Exploiting strategic opportunities<\/h2>\n\n\n\n<p>Identities and access are at the heart of IT security and compliance. The challenge, according to Kempf, is to integrate all business applications in such a way that consistent and secure access governance is guaranteed - whether on-premises or in the cloud. Careful analysis and implementation enable the right design and configuration, the establishment of new automated processes for assigning access authorizations, the creation of transparency and the necessary compliance.<\/p>\n\n\n\n<p>Flint sees decisive advantages for the seamless integration of modern business applications with the involvement of Pathlock's specialists: \"Companies should use this strategic opportunity to modernize their infrastructure and improve their cross-application IT security.\" Last but not least, the end of support for SAP IDM also offers the ideal opportunity to introduce new functionalities, a transparently measurable risk analysis and Continuous Control Monitoring (CCM) for the continuous monitoring of the quality and effectiveness of internal controls.<\/p>\n\n\n\n<div class=\"wp-block-stackable-divider stk-block-divider stk-block stk-8f8db00\" data-block-id=\"8f8db00\"><hr class=\"stk-block-divider__hr\"\/><\/div>\n\n\n\n<p>To the partner entry: <\/p>\n\n\n\n<figure class=\"wp-block-image size-full is-resized\"><a href=\"https:\/\/e3mag.com\/de\/partners\/pathlock\/\" target=\"_blank\" rel=\"noreferrer noopener\"><img loading=\"lazy\" decoding=\"async\" width=\"1000\" height=\"250\" src=\"https:\/\/e3mag.com\/wp-content\/uploads\/2023\/02\/Pathlock_Logo_CMYK.jpg\" alt=\"\" class=\"wp-image-137350\" style=\"width:350px\" srcset=\"https:\/\/e3mag.com\/wp-content\/uploads\/2023\/02\/Pathlock_Logo_CMYK.jpg 1000w, https:\/\/e3mag.com\/wp-content\/uploads\/2023\/02\/Pathlock_Logo_CMYK-400x100.jpg 400w, https:\/\/e3mag.com\/wp-content\/uploads\/2023\/02\/Pathlock_Logo_CMYK-768x192.jpg 768w, https:\/\/e3mag.com\/wp-content\/uploads\/2023\/02\/Pathlock_Logo_CMYK-100x25.jpg 100w, https:\/\/e3mag.com\/wp-content\/uploads\/2023\/02\/Pathlock_Logo_CMYK-480x120.jpg 480w, https:\/\/e3mag.com\/wp-content\/uploads\/2023\/02\/Pathlock_Logo_CMYK-640x160.jpg 640w, https:\/\/e3mag.com\/wp-content\/uploads\/2023\/02\/Pathlock_Logo_CMYK-720x180.jpg 720w, https:\/\/e3mag.com\/wp-content\/uploads\/2023\/02\/Pathlock_Logo_CMYK-960x240.jpg 960w, https:\/\/e3mag.com\/wp-content\/uploads\/2023\/02\/Pathlock_Logo_CMYK-18x5.jpg 18w, https:\/\/e3mag.com\/wp-content\/uploads\/2023\/02\/Pathlock_Logo_CMYK-600x150.jpg 600w\" sizes=\"auto, (max-width: 1000px) 100vw, 1000px\" \/><\/a><\/figure>","protected":false},"excerpt":{"rendered":"<p>Governance, risk management and compliance (GRC) are closely linked, essential areas of a company. A mix of on-premises and cloud is now increasingly being used for business applications. This increases the number of networked applications, but also the security risks. <\/p>","protected":false},"author":2368,"featured_media":146392,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"pmpro_default_level":"","footnotes":""},"categories":[5,44020],"tags":[],"coauthors":[39720],"class_list":["post-146386","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-it-management","category-mag-24-10","pmpro-has-access"],"acf":[],"featured_image_urls_v2":{"full":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085.jpg",1000,450,false],"thumbnail":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-150x150.jpg",150,150,true],"medium":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-400x180.jpg",400,180,true],"medium_large":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-768x346.jpg",768,346,true],"large":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085.jpg",1000,450,false],"image-100":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-100x45.jpg",100,45,true],"image-480":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-480x216.jpg",480,216,true],"image-640":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-640x288.jpg",640,288,true],"image-720":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-720x324.jpg",720,324,true],"image-960":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-960x432.jpg",960,432,true],"image-1168":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085.jpg",1000,450,false],"image-1440":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085.jpg",1000,450,false],"image-1920":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085.jpg",1000,450,false],"1536x1536":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085.jpg",1000,450,false],"2048x2048":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085.jpg",1000,450,false],"trp-custom-language-flag":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-18x8.jpg",18,8,true],"bricks_large_16x9":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085.jpg",1000,450,false],"bricks_large":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085.jpg",1000,450,false],"bricks_large_square":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085.jpg",1000,450,false],"bricks_medium":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-600x270.jpg",600,270,true],"bricks_medium_square":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-600x450.jpg",600,450,true],"profile_24":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-24x24.jpg",24,24,true],"profile_48":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-48x48.jpg",48,48,true],"profile_96":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-96x96.jpg",96,96,true],"profile_150":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-150x150.jpg",150,150,true],"profile_300":["https:\/\/e3mag.com\/wp-content\/uploads\/2024\/10\/shutterstock_2505748085-300x300.jpg",300,300,true]},"post_excerpt_stackable_v2":"<p>Governance, Risk Management und Compliance (GRC) sind eng verbundene, essenzielle Bereiche eines Unternehmens. Bei Business-Applikationen wird nun zunehmend auf einen Mix aus On-premises und Cloud gesetzt. Damit steigt die Zahl vernetzter Applikationen, jedoch auch die Sicherheitsrisiken. <\/p>\n","category_list_v2":"<a href=\"https:\/\/e3mag.com\/en\/category\/it-management\/\" rel=\"category tag\">IT-Management<\/a>, <a href=\"https:\/\/e3mag.com\/en\/category\/mag-24-10\/\" rel=\"category tag\">MAG 24-10<\/a>","author_info_v2":{"name":"E3 Magazine","url":"https:\/\/e3mag.com\/en\/author\/e3_magazin\/"},"comments_num_v2":"0 comments","_links":{"self":[{"href":"https:\/\/e3mag.com\/en\/wp-json\/wp\/v2\/posts\/146386","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/e3mag.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/e3mag.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/e3mag.com\/en\/wp-json\/wp\/v2\/users\/2368"}],"replies":[{"embeddable":true,"href":"https:\/\/e3mag.com\/en\/wp-json\/wp\/v2\/comments?post=146386"}],"version-history":[{"count":2,"href":"https:\/\/e3mag.com\/en\/wp-json\/wp\/v2\/posts\/146386\/revisions"}],"predecessor-version":[{"id":146393,"href":"https:\/\/e3mag.com\/en\/wp-json\/wp\/v2\/posts\/146386\/revisions\/146393"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/e3mag.com\/en\/wp-json\/wp\/v2\/media\/146392"}],"wp:attachment":[{"href":"https:\/\/e3mag.com\/en\/wp-json\/wp\/v2\/media?parent=146386"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/e3mag.com\/en\/wp-json\/wp\/v2\/categories?post=146386"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/e3mag.com\/en\/wp-json\/wp\/v2\/tags?post=146386"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/e3mag.com\/en\/wp-json\/wp\/v2\/coauthors?post=146386"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}