The Pumpkin blog
The world's MOST interesting blog about SAP security, GRC and managing risk in financial systems
The big balancing act: SAP security for support & development teams
One for the ages: getting the balance right between control and empowering support and development teams.
Closing the net on back door access via custom developments
If I were accountable for security of an SAP system, this is a subject I’d really be focused on.
SoD compliance: Still a challenge for organisations of all sizes in 2023
The perennial issue of SoD management doesn’t go away and if you’re not doing something about it, this is for you!
The hidden costs of outdated SAP role models and what to do about it
The importance of keeping your role design up to date to support business requirements and minimise costs.
Best practice lessons: Transporting SAP Security
Surely in 2022 everyone knows how to transport roles correctly, right?