|
SAP security in Local Government and, indeed, across the Public Sector, is of growing importance. With 48 Local Authorities now using SAP, and with the scope in most growing each year, the need to prevent incidents gets greater and greater. In some cases the drive comes from an audit angle, but in many cases the auditors may not have access to the sort of SAP skills needed to adequately and confidently assess risk related to SAP enterprise systems. With billions of pounds of taxpayers money at stake, not to mention the personal records of tens of thousands of employees, and the very sensitive records in children and adult care services, the whole matter of security is crucial. Each one of us trust our local Council to use our contribution wisely and not to allow any form of misuse, and a key driver for Councils is the fear of loss of confidence that a public breach would cause. We've all seen how the media jump on any Government potential scandal or issue, and the costs and damage from such an incident can be stunning.
su53 Solutions was keen to see how its established Risk Review service would work for Local Authorities, what typical findings might there be, what help would be needed, and what pain and threat was it that the Authority wanted to ensure was properly contained. It modified its approach to suit and contacted a number of Authorities with established SAP system, both outsourced and run by in-house teams, to offer a reduced fee Risk Review in exchange for the Authority offering investigative session with its senior Officers and Auditors to determine how su53 Solutions could best adapt and offer its services to others in the Public Sector.
Our thanks to Staffordshire County Council and to Worcestershire County Council for being the first to respond and for working with us to develop our new SAP GRC & Security services for the Public Sector. (add logos) su53 Solutions carried out Risk Reviews on both organisations and, whilst the findings are clearly confidential, were delighted at the feedback on the service, and the ideas and information offered to make our services even more applicable.
Discussion are now in progress with over 12 other Public Sector bodies with similar challenges, needing similar and wider solutions, as this becomes one of the focus markets for su53 Solutions.
(attach comments from them...
"The su53 Solutions Risk Review de-brief was a very enlightening, constructive and useful feedback session"
Martin Finch, Head of Financial Practice & Standards
"Excellent, I was really impressed with the findings and recommendation. A very valuable piece of work. I'm sure there's significant demand for your product in the public sector market place"
 Gordon Smith, Head of Internal Audit,
ex PWC IT Systems Auditor
Staffordshire CC
"Both quality and ability of the consultants showed in their enthusiasm of the service delivery"
"Good delivery of analyses and recommendations presented in a helpful way"
Debbie Tams, Head of SAP Security
su53 Solutions is a leading specialist in Governance, Risk Management and Compliance for organisations using SAP. Its services extend from Governance and Audit & Assurance, through Security Policy and Strategy, to SAP GRC implementations and Monthly Compliance Assessments. Its services embrace not only SAP technology, but business processes and helping to develop new attitudes towards risk management and continuous compliance.
For further details, please contact:
This e-mail address is being protected from spam bots, you need JavaScript enabled to view it
+44(0)28 9008 0053
|
