APM - Your GRC "light" solution for SAP R/3

APM for SAP R3

Black holes in the security concept, confusing authorization design processes and unclear statutory rules and regulations create uncertainty. Numerous companies are challenged by securing their sensitive business data. To combat these problems, efficient analysis and correction of authorizations are essential prerequisites to protect the SAP system from unauthorized access, data manipulation and compliance with legal regulations.

With APM Atlantis you have access to standardized and easy-to-use authorization administration tools. Proactive analysis closes the security gaps and results in a noticeable reduction in cost and time. In addition, APM Atlantis transparent and efficient authorization management minimizes risks and ensures that only authorized users can carry out critical transactions.

Transparency and risk control

APM Atlantis proactive Risk Analysis identifies critical authorizations during role maintenance. APM Atlantis provides you with the opportunity to effectively manage and modify roles across your organization in an error-free manner.

APM Atlantis benefits include:
•Analysis and administration of authorization concept within the SAP environment
•Automation and standardization of role management processes
•Elimination of manual errors
•Compliance with statutory rules and regulations like SOX, BASEL II, SoD, etc

A comprehensive and flexible GRC solution

APM Atlantis has a modular structure. You select the modules that meet the specific needs of your organization:

Customize, Analyze and create sessions

The basic module APM core customizes APM Atlantis to meet with your individual needs and requirements. This module allows you to view information about transactions, authorization objects, etc. In addition you can create scenarios, templates and favorites for the generation of roles. Authorization traces are used to evaluate which authorizations the users (or departments) actually need within the organization and SAP. APM core is also the interface with the other modules.

All Roles under control

Defining, configuring and maintaining roles and critical authorizations can be an expensive and time consuming process. A company's organizational structure is in a constant state of flux. Changes occur frequently and the associated IT tasks such as maintaining authorizations, permissions, documentation, etc. must be carried out in a timely manner. In addition to the high administrative expenditure for IT personnel, manual changes and revisions can also be a source of errors.

APM composer creates transparency: critical authorizations are identified during the role maintenance process. Pre-defined inactive authorizations are automatically deactivated in the role. The mass change feature modifies authorization values across all fields quickly and without mistakes. This simplifies and accelerates work steps and processes considerably.

Creating your roles has never been easier, more efficient and more secure: APM composer supports every type of role generation (manual, transaction-related or via authorization trace). Additional transactions or individual authorizations can be assigned automatically across roles using the inheritance process. The possibility to customize derived roles allows modifications according to specified business requirements. In addition, APM composer easily imports and merges existing roles to create a new role. Authorizations required for specific transactions are displayed and easily imported - with the click of a button.

Increasing Security through automated Process

Companies are always in flux. This frequently results in a high workload due to the company-wide authorization changes that must be implemented. Changes are implemented easily and securely with APM transformer.

APM transformer offers different options for the simple adjustment and correction of roles: role-based, cross-role with free role selection, or with defined derivations – all roles are corrected quickly and error-free. The mass deletion function is a very handy tool to easily purge redundant roles from the system.

Clear Overview with optimized role structure

APM menurizer is used to create and manage a clearly structured role menu. This module also is the foundation for creating the user menu as well as the transaction synchronization.

Permanent SOX Compliance through more efficient authorization controlling

APM observer enables companies to be SOX compliant by monitoring the SAP system and authorizations through the comprehensive analysis module. APM observer identifies, analyzes and, if necessary, removes critical authorizations. In addition APM observer allows you to log, analyze and document security-related system information.

The analysis result is displayed in an ALV table, tree structure or can be exported to Excel or Access. The result is the basis for the authorization administrator to carry out necessary purges. If critical authorizations or rights are assigned selectively, these can be authorized in APM Atlantis analysis.