Professional Training

Audit and Security of SAP® ERP

ACI Learning, Online
4 days
4 days

Audit and Security of SAP® ERP

Audit and Security of SAP® ERP

In this four-day, hands-on seminar, attendees will investigate the risks inherent in the SAP® application and review some of the most effective control opportunities one can configure or design into the application. We will cover the critical business processes required to ensure that SAP is working as intended and that processes/monitoring procedures support effective system control. We will review the risks and general control opportunities provided by SAP and examine the security and basis configuration settings necessary to support a strong control environment for the rest of the system.

In this seminar we will pinpoint the risks related to default IDs, profile parameters, IMG configuration and maintenance and segregation of duties. We will drill down to core business processes, including the financial close cycle (supported by FI/CO), the order-to-cash cycle (supported by SD) and the purchase-to-pay cycle (supported by MM). Within these modules attendees will review critical configuration settings such as field status groups, validation routines, posting and payment tolerances, stochastic blocking, dual control over sensitive fields, minimum pricing conditions and automatic credit checking. We will discuss (and show) key risks and controls within other modules and functions that may be of interest.

In addition, participants will explore where SAP is going with both its S/4HANA system and the SAP Governance, Risk and Compliance (GRC) suite of applications, and review the auditing and monitoring changes required to move down these paths. You will learn how to structure your implementation or upgrade to avoid common audit issues post “go-live.” We will delve into advanced auditing techniques supported by tools within the standard SAP application, including the Audit Information System (AIS) as well as data analysis opportunities that can be provided by ACL, IDEA and, in some cases, the SAP suite itself. Attendees will leave this high-impact seminar with the know-how to assess systems and provide recommendations for improving both SAP configuration and usage.

Suitability - Who should attend?

Financial, Operational, Business Application and IT Auditors; Audit Directors and Managers; Compliance Managers; SAP® Security and Support personnel

Prerequisite: IT Auditing and Controls (ITG101) , IT Audit School (ITG121) or equivalent experience

Outcome / Qualification etc.

Completion of this course is worth 32 CPE Credits

Training Course Content

  1. SAP® Overview and Concepts
  2. SAP Audit Fundamentals
  3. Basic Navigation for Auditors
  4. SAP Security
  5. SAP Administration and Change Control
  6. SAP Modules 
  7. FI: Financials and CO: Controlling Risks and Controls
  8. MM: Materials Management Risks and Controls
  9. SD: Sales and Distribution Risks and Controls
  10. Other Modules (based on class interest)
  11. SAP Governance Risk and Compliance (GRC) Solutions
  12. Advanced SAP Auditing Techniques
  13. Implementations and Upgrades

Customer Outreach Award


We believe that it should be easy for you to find and compare training courses. 

Our Customer Outreach Award is presented to trusted providers who are excellent at responding to enquiries, making your search quicker, more efficient and easier, too.