SAP Security & GRC Podcast - Technical Series (E03): How to Build SAP Single Roles

November 27, 2025 By Soterion

Watch or listen to the SAP Security & GRC podcast – helping you on your journey to effective access risk management in SAP.

In our latest technical series episode, we unpack one of the most important building blocks in SAP authorisations: single roles. Our experts explore the different ways organisations design single roles to balance provisioning efficiency, SoD risk reduction, and long-term maintainability.

In this episode, we explore:

The difference between task/functional roles and value/enabler roles
Why some companies prefer job-role-based design for easier provisioning
The hidden pitfalls of job roles — including SOD risk and over-allocation
How parent & derived roles simplify maintenance across large landscapes
The role methodologies that influence risk, licensing and long-term scalability

Don’t miss out on insights from:

Emile Steyn, Business Unit Manager – Soterion Benelux
Cameron Mattison – Senior SAP Authorisations Consultant – Soterion
Ross Robertson – Senior SAP Authorisations Consultant – Soterion

Listen

Watch

Visit our Buzzsprout channel for more episodes

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

SAP Security & GRC Podcast - Technical Series (E03): How to Build SAP Single Roles

Listen

Watch

Related Content

Stay informed of new episodes

You may find this interesting

Type [To] Search

SAP Security & GRC Podcast - Technical Series (E03): How to Build SAP Single Roles

Listen

Watch

Related Content

Stay informed of new episodes

You may find this interesting

SAP Security & GRC Podcast – Technical Series (E04): How to make use of SAP SU24 Variants

SAP Security & GRC Podcast - Technical Series (E03): How to Build SAP Single Roles

SAP Security & GRC Podcast - Technical Series (E02): Authorisation Default Values

Type [To] Search

SAP Security & GRC Podcast - Technical Series (E03): How to Build SAP Single Roles

SAP Security & GRC Podcast – Technical Series (E04): How to make use of SAP SU24 Variants

SAP Security & GRC Podcast - Technical Series (E03): How to Build SAP Single Roles

SAP Security & GRC Podcast - Technical Series (E02): Authorisation Default Values