Enterprise Resource Planning (ERP)

Open Peer Review: Critical Controls Implementation for SAP

  • 1.  Open Peer Review: Critical Controls Implementation for SAP

    Posted Nov 27, 2019 06:09:00 PM
    Dear Colleagues,

    The Cloud Security Alliance would like to invite you to comment on the Critical Controls Implementation for SAP: Part 1.  This document focuses on providing guidelines on controls implementation as well as a set of checklist for SAP administrators. The following controls are covered:

    1. APP01 - Secure Landscape
    2. APP02 - Baseline Secure Configurations
    3. APP03 - Security Vulnerabilities
    4. INT01 – Secure Integrations and API
    5. DAT01 – Continuous Monitoring
    6. DAT02 – Data Separation
    7. DAT03 – Data Encryption
    8. BUS01 -  Inventory of Business Assets, Data and Processes
    9. BUS02 - Business Process Controls
    10. BUS03 - Continuous Compliance

    The open peer review will close on the 3rd of November 2019. 

    To participate, please follow the link to the review site. From there, you should be able to navigate to Google Docs and provide your comments. Please do not provide editorial comments (i.e. grammar, formatting, etc), rather focus instead on the content of the document. 

    Link to document: https://docs.google.com/document/d/1WEA9O46rQFQ8-u5mrbgPxqT55PkSQ1r_S83100t5-KI/edit?usp=sharing

    Thank you for your time and contributions.


    ------------------------------
    Victor Chin
    Oct 10 · Notified 125 people
    ------------------------------