Hi ,
Currently i am working in an MNC company as an SAP
Security tier1 member , we will take care of User
Administration , Profile/authorization administration
activities .Could any one tell me , is i am eligible to
apply for an SAP Security job for 2 years experience .
Could any one tell me about SOD , SOX Audit and Virsa tool ,
i have never worked before .
Prakash
Answers were Sorted based on User's Feedback
Answer / reddy
What is GRC ?
Governance, Risk, and Compliance.
The goal of GRC is to help a company efficiently put
policies and controls in place to address all its
compliance obligations while at the same time gathering
information that helps proactively run the business.
This means Ethical Business Process should comply with
Effective Process controls as per the related industry
Business Process and accounting Process and Govt Policy .
This GRC process finally Can Conculded with respect to Govt
Orgasnisations and Public Orgaanisation which are
Registered in Local Stock Markets are accountable to have
Effective Governance and Process Controls to Protect the
Share holder rights and Prevent Organised Corporate Fruads
and scams.
GRC Tools and IT applications
There are many GRC AUDIT tools in the Market to Facilitate
Internal and External Audit of the Companies .
What is SAP VIRSA Tool.
focused on 1) Access controls , 2) Process Controls.
It Has 4 Sections to Audit the system.
1. Compliance Caliberator
2. Role Expert
3. Firefighter
4. Access enforcer .
VIRSA systems is now takenover by SAP AG.
It has been aprt of Netwever and add on now .
Is This Answer Correct ? | 9 Yes | 0 No |
Answer / shiva
SOD and SOX are used for SAP Audit purposes in the company
and Virsa tool is a 3rd party tool integrated with SAP,used
for finding of the risks before applying the roles (new) to
a user.
Is This Answer Correct ? | 9 Yes | 1 No |
Answer / geethu
Hi Prakash,
If you are very strong in Security you can apply for
Security job for 2years..If you are not please dont
experiment in new company it wil a big problem for you.
And for SOD and SOX is very Important topic. SOD
Sagregation of Duty Analysis is fully automated tool which
is used for auditing.
SOD and SOX is very huge topic. You cannot understand until
you read relevant books and start practice
Is This Answer Correct ? | 7 Yes | 7 No |
What are st01 t-codes used for?
Does anyone know what kind of questions does the Accenture asks on Interview as SAP Security Consultant?
what is role matrix
How to codify for an Item in SAP? How many digits are required for an item?
Explain document transfer-level security?
Differentiate between derived role and composite role
Hi All, We have few users with SAP_ALL profile from 90 days, now i want check what are the transactions they are used till now and i didn’t activate any audit filters in SM19. In this case How can we find?
List of transaction codes, users are executing for last 3 months
Explain how you can lock all the users at a time in SAP?
What do you mean by Role Remediation?
how can we get the email address for multiple users at a time.
Tell me about your SAP Career? (all interviews start with this queshion only...pls tell me a template for this answer)