SAP Authorization System: Design and Implementation of Authorization Concepts for SAP R/3 and SAP Enterprise Portal

Excellent introduction in only 200 pages by defining specific authorization step(s) for both individual roles including executives & special group roles.. . Chapter 1 Page 27 addresses pivotal questions corporate Controller & Auditor's will or should ask. . . Very specific examples of both data security aspect & defining the authorization roles are well narrated by authors using successive depth in short examples in following chapters. THE Beginning introduces a variety of core Authorization checks, covering introduction to necessity of protecting whole system including protection of individual internal SAP database Tables homding individual rows & columns of varying data privacy levels, protecting Reports, protecting security of regulated HR data, plus summary of concepts for System Access protection, User administration, the Authorization concepts, creating Documentation of Access Protection System, and Retention Periods. ** Now you have solid map to passing audits with lower audit expense ** Each chapter averages to roughly 15-20 pages. Ch.3 Embedding Internal Control Systen, Ch.4 Procedure Model of Designing Authorization Concept with callout on Involved Parties roles (steering committee, Project mgmt, Auditor's, module specialists & process specialists, contact persons fron user departments, user & authorization administration). Ch.5 Process Model for implementation. Ch.6 Auditing Authorization Concepts. Ch.7 SAP Enterprise Portal. Ch.8 Future Development & Methods. * - * - * David L Cannon Best Selling Author "Certified IS Auditor Study Guide (Sybex/Wiley) 2006~present