Watch video about SAP Landscape: Instance and Clients (slides)
Read the following in textbook Auditing and GRC Automation in SAP (AGAS) by Chuprunov, Maxim
- AGAS Chapter 6.1 and 6.2 (IT Organization and Change Management Controls)
Review the lecture slides and notes for Change Management, Development
SAP Security 2, Finance Controls 2
ITACS Webinar Presentation (10December18)
Daily Quiz
- Final Exam Study Guide:
- IS Audit:
- Trust By Verify
- Audit Scope Targets = Significant areas of risk
- Target: Substantive sampling/testing [If client data is available ACL will provide 100% sampling]
- Purpose & scope of audit = Determine evidence gathered
- BCP / DRP
- BCP/DRP Steering Committee Responsible for day-to-day decisions on project
- Business Executive Team owns final accountability
- BCP 1st Step = Business Impact Analysis [BIA] / Risk Assessment
- BIA results determine overall cost of exercise
- Success = Management approval of test scenarios
- DRP = Processing of System[s] / Application[s] determined by Business Management
- DRP = Satisfies Technology Execution of BCP requirements
- IS Audit: