Читать книгу Practical Guide to Auditing SAP Systems - Martin Metz - Страница 3

Cover

Title

Copyright / Imprint

Table of Contents

Preface

1 The principles of auditing IT systems

1.1 Legal basis for internal audit

1.2 Importance and background of the audit function

1.3 Standards for auditing information systems

1.4 General approach for auditing information systems

2 The basic principles of auditing SAP systems

2.1 Business relevance of SAP systems

2.2 Technical design of SAP systems

2.3 SAP audit universe

2.4 General approach and prerequisites for auditing SAP systems

3 Useful tools for an SAP auditor

3.1 Transaction SE16/SE16N: Data Browser

3.2 Transaction SUIM: User Information System

3.3 Transaction SA38: ABAP program execution

3.4 Transaction SAIS: Audit Information System

4 Technical steps for auditing SAP systems

4.1 Change management

4.2 Development management

4.3 Table logging

4.4 SAP Security Audit Log

4.5 Role management

4.6 User access management

4.7 Review of privileged access rights

4.8 Emergency access management

4.9 Password security and authentication

4.10 Batch processing

4.11 RFC interfaces

4.12 Database and server security

5 Conclusion and outlook

6 Abbreviations and glossary

6.1 Abbreviations

6.2 Glossary

A The authors

B Disclaimer