Like all of the products that Security Weaver offers, Emergency Repair represents best practices for SAP compliance administration and is designed to help customers ensure regulatory compliance and easily manage user access to any SAP environment
Atlanta, GA (Vocus) April 23, 2007
Security Weaver (booth 1735 at SAPPHIRE '07), an emerging leader of SAP compliance software solutions, today announced the availability of Security Weaver™ Emergency Repair™, part of the Security Weaver for SAP platform. Emergency Repair enables programmers access to an SAP enterprise system when an emergency occurs and programmer access is needed. In addition to providing automated notification of emergency access activity to administrators and managers, Emergency Repair maintains an accurate and detailed record of all of the information that is accessed, ensuring appropriate accountability, control and compliance with government regulatory rules while providing a full audit trail.
Security Weaver's flagship product, Security Weaver for SAP, automates the complex process of monitoring, administrating and resolving SAP user access to ensure systems are free from segregation of duties (SOD) conflicts and inappropriate access to sensitive transactions. Leading organizations, such as AIG Retirement Services, Hitachi High Technologies of America, Cutter & Buck, and James Hardie are using Security Weaver to provide automated and preventative user access controls for their SAP environments.
In the past, when companies faced an emergency or after-hours maintenance need, they would grant temporary access or create multiple, generic maintenance IDs to provide emergency system access. However, granting temporary access is a highly inefficient process which requires 24x7 support from an administrator, and it does not provide a permanent process of tracking and saving the detailed activities associated with a specific user. In addition, creating multiple IDs means that the actual user name is hidden from the system, which makes it very difficult to track users during the auditing process. While these methods address the emergency at hand they are not an effective system for ensuring SAP user access compliance when emergency system access is required.
"The issue of emergency access to our SAP system and making sure we're being compliant with Sarbanes-Oxley regulations is very important to us," said Brian Kilborn, SAP Administrator, Cutter & Buck. "Security Weaver Emergency Repair allows us to view a user's production ID so that we know exactly who that person is. It forces all support staff that need more than read-only access to the production system to document why they need that access before they are granted access on a temporary basis. In the past our compliance reporting process was time-consuming and it was difficult to generate reports. Now with Emergency Repair, combined with Winshuttle's TxShuttle, we're able to simplify our compliance reporting needs at a fraction of the cost."
"Like all of the products that Security Weaver offers, Emergency Repair represents best practices for SAP compliance administration and is designed to help customers ensure regulatory compliance and easily manage user access to any SAP environment," said Neil McConnell, SVP, Chief Operating Officer, Security Weaver. "Security Weaver Emergency Repair provides greater SAP user access control, helps ensure regulatory compliance, reduces operating costs and creates more efficient and effective audits. System administrators can sleep well at night knowing that they have full control over who can access their SAP systems, even in emergencies."