Registration for this two-day workshop is complimentary courtesy of UWM’s Center for Technology Innovation and the Americas’ SAP Users’ Group (ASUG) Wisconsin Chapter.
Overview
Enterprise Resource Planning (ERP) systems such as SAP are at the core of a company’s IT landscape. SAP is the “heart” of daily transactions within many organizations. With the advent of Sarbanes-Oxley, OMB A-123, and similar regulatory concerns, the need to understand, document, and test security and internal IT controls in SAP has never been greater. SAP internal controls have always been buried in various layers of security, configuration, and business process intricacies in enterprise-wide IT systems. With many public and non-public companies accepting the new regulatory mandates, there is a clear need to understand and implement the right way of securing and controlling applications such as SAP. If this is the first time you are exposed to SAP or you have been a user but need to understand the inner workings of SAP controls, this is one seminar that you can’t do without.
Topics
The workshop on both days will cover topics that are crucial in SAP auditing.
Thursday, August 21: Overview and Concepts
• Overview and background of ERP systems
• Description of the field of Governance Risk and Compliance management and its application within SAP
• Understanding the IT general controls framework of SAP
• Mapping full functionality of SAP IT general controls to COBIT framework
• Managing GRC and IT general controls from an application architecture perspective
Friday, August 22: Design
• Top 10 reasons for SAP implementations failures
• Application controls and application security architecture design principles
• SAP audit and controls standards and best practices
• Fundamental building blocks of SAP application module security controls
• Best practices of designing optimal business driven SAP security
About the speaker
Bhavesh C. Bhagat is president of EnCrisp LLC, a global leader in enterprise controls management services for complex IT and financial environments in SAP. He is a Certified Information Security Manager (CISM) and has enjoyed wide-ranging international experiences as an SAP IT, audit, and financial consulting executive. Prior to EnCrisp, Bhavesh spent five years in senior management roles within the technology and risk services practice at a Big Four audit consulting firm. Bhavesh presently leads EnCrisp’s global teams to deliver the pioneering industry leading consulting service solutions for sustaining and optimizing the regulatory compliance burden and managing SAP internal controls and enterprise security risks. Bhavesh sits on the board of directors of ISACA National Capital Chapter, which is one of the top three largest IT audit association chapters in the world. He also sits on Board of Advisors to the Commonwealth of Virginia in the Joint Commission on Technology and Science. He is a frequent speaker at ASUG events and Sapphire.
Who should Attend?
This workshop is targeted towards auditors, system administrators, information technology personnel, and all other security professionals requiring the knowledge and skills to perform audits or security assessments of an SAP enterprise application system. Although not required, a beginner-to-intermediate level understanding of application security concepts is useful to get the maximum value from the course.
Coordinator
