Procrastinating SAP Security and GRC practitioners? Help is here
If you are an SAP Security and/or Governance Risk and Compliance (GRC) practitioner headed to Orlando for the co-located ASUG2012 and SAPPHIRE Now conferences, I hope you have already started browsing the Agenda Builder tab on the sapandasug.com web site. However, if you have procrastinated, you are in luck, because in this post I will suggest some sessions for your consideration, depending on your interests and needs. I wish I could suggest “three perfect days”, as others have done, but as we all know, security covers so much ground that the perfect week for each of us is going to depend on the unique needs of your own SAP shop. While I have session days and times listed here, do check the Agenda Builder, though, as the schedules are subject to change.
If you have ever said to yourself “I wish this screen in SAP Security (or SAP GRC) worked differently,” one not-to-be-missed session is on Monday morning right after the keynote. At Security Influence Council: Customers Making a Difference (session 4001, 10:30 AM), you will get the chance to hear about the results that customers are getting from working with SAP to bring enhancements and improved usability to several SAP solutions. It is your chance to ask questions of the Council leadership and find out how to get involved. As it so happens, I am one of the council volunteer leaders and will be among the session speakers, and I hope to see lots of SAP Security and GRC folks there.
Customer presentations give you the chance to hear the real story- the good, the bad, and maybe even the ugly- from their SAP journey. If deployments of any of these SAP solutions are in your future, I suggest you review the descriptions and consider fitting them into your agenda:
Mobile Analytics Strategy and implementation at Eli Lilly – session 0402, Monday at 12:30 PM
A Customer Perspective on Implementation of SAP NetWeaver Business Client (NWBC) – session 2202, also Monday at 12:30 PM
Coca-Cola: Standardization and Optimization of SAP Security Through the Use of SAP GRC Access Controls – session 1005, Tuesday at 11:00 AM
Benefits and Successes of SAP Point of Sale at Beals Inc – session 3507, Tuesday at 1:45 PM
Implementing a Security Model with SAP HANA and SAP BusinessObjects BI 4.0 – session 4209, Tuesday at 2:15 PM
Implementing BI Security Properly with Tips and Tricks – session 1008, Tuesday at 3:00 PM
How the U.S. Department of the Interior (DOI) Successfully Implemented SAP BusinessObjects Access Control – session 1009, Tuesday at 4:15 PM
If you have been wondering how SAP HANA™ might impact security and GRC, I suggest session 4313, SAP HANA™ and Accelerator Solutions for Governance Risk and Compliance,Wednesday at 3:00 PM, and learn about the improvements this new technology can bring to GRC processing, and session 4215, Security Considerations for SAP HANA™, Wednesday at 12:30 PM.
If you are new to SAP Security, or are not an SAP Security practitioner but could benefit from a good overview, I heartily recommend session 1909, SAP ERP Central Component (SAP ECC) Security: A Guide For Auditors, scheduled for Tuesday afternoon at 4:15 PM. This session will give you an excellent grounding in the basics of SAP Security, perfect for auditors and others who may not be fluent in the language of SAP security. If you are an experienced security practitioner, you might want to suggest it to your non-security colleagues attending the conference.
In between sessions, there are other great opportunities for attendees interested in security and GRC. For example, one demo station features GRC Access Control and GRC Global Trade Services (GTS), open during all show floor hours. Another great way to fill in any gaps in your agenda are the microforum sessions. One such session covers a topic that might meet your needs if you are just starting out in GRC or are looking for ideas to improve your GRC program:
Learn how to build and navigate a successful GRC program – session 7942, Tuesday at 2:00 PM
The Customer Lounge sessions are a great place both to network and to get in touch with the concerns of today’s SAP customers. Meet your fellow SAP security and audit practitioners, make new connections, and reconnect with long time colleagues at session CL34, The Voice of SAP Security, Wednesday at 1:15 PM.
I hope that I have given some food for thought to anyone who works in SAP security and GRC, whether it is your full time responsibility, or just one of many SAP hats that you wear. With a little advance preparation, you can get the most out of your week in Orlando. If you spot me in the crowd, don’t be shy, come on up to me and say Hi. In fact I encourage you to introduce yourself to anyone standing about in an SAPMentor or ASUG Volunteer shirt; we are happy that you are there. I look forward to meeting many of you in Orlando.