Marta Ortona

Marta Ortona

Recent Posts

SAP GDPR: What systems/ tools are involved?

Posted by Marta Ortona on Aug 5, 2022 8:15:00 AM

Currently, there is no one-size-fits-all solution to address all the issues required by the GDPR.


SAP proposes different systems, see what they are and what they are used for. SAP offers different systems: what are those and what are they for?

Read More

Topics: SAP GDPR, sap ilm gdpr, sap tdms, sap data masking, data privacy

SAP Developers. Better an internal or external development team?

Posted by Marta Ortona on Jul 29, 2022 8:15:00 AM




Having within the company’s awareness also on the part of SAP developments is certainly important. Especially in order not to be dependent on third parties even for simple problems.



We don’t talk about ABAP developers directly. But what are or could be the impacts in having an internal group of developers for the security aspects. 


Is it better, regarding the SAP security, to have an internal or external development team? 

Read More

Topics: programmazione sicura, codice sicuro SAP, CVA

SAP Password Policy

Posted by Marta Ortona on Jul 22, 2022 8:15:00 AM

Is it possible to customize passwords for categories of users? Where and how are passwords managed in SAP? 

How can these aspects be checked during an audit?

Read More

Topics: sap password, secpol, password policy

SAP Mail, does everyone in SAP read anyone’s email?

Posted by Marta Ortona on Jul 15, 2022 8:15:00 AM

Those areas that are often poorly guarded, when you send emails, may contain sensitive or personal data in the body of the email or in the attachments.




In SAP there is a feature to see all outgoing mails from SAP, also in content terms. Let us see what it is and why it is often underestimated in terms of security.


Read More

Topics: sap password, mail security sap, sost

SAP licenses, how to optimize costs?

Posted by Marta Ortona on Jul 8, 2022 8:15:00 AM


Do we need days of work every time we have to deal with this issue?

To understand which licenses and how to read the reports extracted from SAP?


Some tips in this article to make the licensing process easier in SAP.

Read More

Topics: usmm, sap license auditing, slaw, audit sap

The 5 recurring questions in SAP Security Governance projects

Posted by Marta Ortona on Jul 1, 2022 8:15:00 AM


What are the main questions before starting a revising project of the authorizations in SAP? 


What are the main focus point in a SAP Security Review? How to deal with it and how to be prepared?
Read More

Topics: SAP Security, S4/HANA, documentazione sap security

SAP Role and User Administration: what are the metrics?

Posted by Marta Ortona on Apr 8, 2022 8:15:00 AM


How does one know if you have set up a good authorization concept in SAP??


What are the metrics and how to best exploit them? Does a SAP Security Score exist? 

Read More

Topics: User Access Management, sap custom, autorizzazioni sap, Statistiche security SAP

Consultants with production environment access? 5 actions to remember!

Posted by Marta Ortona on Mar 11, 2022 8:15:00 AM


Is it really possible that external consultants do not have any access to SAP production systems? 


Clearly there are various case studies, occasional or ongoing consultants, for example for maintenance contracts.


Is it really necessary to release an access to the production systems even in this last case? Can we control what happens and why it is requested?

Read More

Topics: sap_all, SAP GRC, sod, gdpr, pfcg, consulenti

Change management SAP Security

Posted by Marta Ortona on Feb 18, 2022 8:15:00 AM

Are you an auditor? Or an IT manager who wants to monitor the data of his own SAP systems? 


Is it possible to assign privileges without leaving traces or almost?



That’s why you need to know what are the potential risks in the SAP system and how you can mitigate them!



Read More

Topics: programmazione sicura, sicurezza codice ABAP, ABAP

10 Tips for a ticket management system!

Posted by Marta Ortona on Jan 28, 2022 8:15:00 AM

Do you have to choose or change the help desk or ticket management system? 

Here are the focus points to consider, based on our experience.

Read More

Topics: security ams, ticket management system

Content not found

Yes Subscribe!

Blog Aglea, what you could find out?

Every Friday a new post, interview or content related to SAP Security.

  • Tips on how to design SAP Security
  • How to
  • Checklist
  • Common error and pitfall on security SAP
  • Interview with experts
  • Who we are and Aglea vision on SAP Security

Recent Posts

Post By Topic

See all