VNSG Security Event – 16 June 2022 Soterion will be at the in-person Security...
Business-centric GRC solutions
for companies running SAP
Our entire business is focused on building business-centric GRC solutions that enhance business accountability of risk. As every company’s GRC requirements differ, we’ve developed three ways, namely; hosted, on-premise and managed service that SAP companies can handle their GRC, whatever their internal capability.
What are your GRC business objectives?
Secure SAP solution
Access risk software together
with expert consulting tailored
to your organisation.
Comply with regulations
Accountability of access risk
How can Soterion help you?
Soterion has helped organisations for over a decade to extract maximum value from their GRC Investments.
Guided, step-by-step GRC maturity process
Used by over 200 clients around the world
Soterion has helped organisations for over a decade to extract maximum value from their GRC investments.
Agile approach to integrated risk management
Powerful, size-sensible features
Trusted by the big 4 global audit firms
Total cost of
Soterion’s business-centric solutions
Access Risk Manager
The Access Risk Manager provides customers with the ability to identify their SAP access risk exposure using a user-friendly web application. Additional functionality includes risk remediation recommendations and the “What-if” Allocation Simulator. The Simulator will allow you to pre-empt risk bearing access prior to applying the change request in SAP, thus ensuring a pro-active approach to SAP access risk management.
Basis Review Manager
SAP Basis Configurations provide system-level controls to secure an SAP system. The Basis Review Manager compares your SAP Basis Configuration to an industry best-practice set of rules. Since these configurations usually form part of an annual external audit, our Basis Review Manager allows you to be prepared, and will establish complete compliance to avoid adverse audit findings.
Elevated Rights Manager
The Elevated Rights Manager grants sensitive fire-fighting access in an automated workflow-driven process, and enables your management team to perform a structured review of any activities that were performed during the Elevated Rights Access period.
SAP License Manager
The SAP Licensing Manager provides you with the insight you need to tailor your SAP license agreement to your organisation’s specific requirements; ensuring optimal contract management and complete compliance whilst reducing unplanned and excess costs.
Periodic Review Manager
Periodically reviewing your SAP user access, analysing the associated risks and evaluating the necessary controls will align your GRC capacity with your individual business targets. This process will significantly enhance the insight into your GRC environment, as well as being an audit and statutory requirement in many business environments.
Central Identity Manager
The Central Identity Manager introduces the Business Role concept to improve efficiencies in the SAP user provisioning process. Standardisation of job functions across the organisation reduces complexity and the effort required to manage and review SAP user access.
Data Privacy Manager
The Data Privacy Manager analyses all tables in SAP and highlights those that contain fields with personal or sensitive information, categorising the data by Data Domain and Subject.
Soterion allows users to reset their Soterion as well as their SAP passwords. This functionality reduces business down-time by empowering users to reset passwords instantly.
What Our Clients Say
“The GRC process is a journey... Identify a partner such as Soterion, who understands your business requirements and can walk the journey with you.”
“Soterion consulting was an absolute pleasure to work with. They not only have incredible knowledge in the SAP authorization and SAP GRC space, but their professionalism shone through throughout the project.”
"We have achieved Full System Reliance from our external auditors for the first time in three years, thanks to Soterion’s SOD risk rule set."
"Soterion’s clean-up exercise allowed us to reduce our Segregation of Duties (SOD) count by 98% without any impact on business."
Visit our blog
Receive news of events, webinars and SAP security and GRC related insights delivered to your inbox.