Enterprise Resource Planning (ERP)

Content Development: Critical Controls Implementation for SAP (Part 2)

  • 1.  Content Development: Critical Controls Implementation for SAP (Part 2)

    Posted Nov 27, 2019 06:10:00 PM
    Dear Colleagues,

    Part 1 of the Critical Controls Implementation for SAP document is out for open review. In the mean time, let's start work on developing content for Part 2. 

    Content Development Responsibilities

    • Open Sections:
      • USR02 - User Account Management (Sami Al-Shaheri)
      • USR03 - Role-Based Access Control (Malini Rao)
      • USR06 - Secure User Provisioning/Deprovisioning(Malini Rao)
      • APP04 - Secure Communications (Fredrik Pihl)
      • APP05 - Change Management Controls (Malini Rao)
      • APP06 - Secure ERP Extensions (Sami Al-Shaheri)

    To Begin....

    Please download the template and write your content there. Once you are done, please send it back to me or upload it onto the basecamp thread here.

    You can refer to the examples that have been provide below as well.

    Template: https://public.3.basecamp.com/p/aJH45JamBX5BxuW678mf9TnQ
    Examples: https://public.3.basecamp.com/p/7ax7WmTtrs3UswMxsigAmhTL

    If you are unsure exactly what we are referring to by the controls above, please take a quick read through this document where all will be explained: https://cloudsecurityalliance.org/download/artifacts/top-20-critical-controls-for-cloud-erp-customers/


    Let's target for a final deadline of 4 weeks ending on the 11th of November.

    Let me know if you are interested in helping us develop an implementation guide for any of these controls. Feel free to ask any questions in this thread. We will track everyone's progress using this thread.


    Victor Chin
    Oct 10 · Notified 125 people