Security and Compliance Software

Response to this request is long overdue. By law, under all circumstances, CoDA (Operations) Limited should have responded by now (details). You can complain by requesting an internal review.

Dear CoDA (Operations) Limited,

Can you please confirm if you currently use or plan to use any of the following software:
 
1. SAP Business Integrity Screening
2. SAP Access Control
3. SAP Process Control
4. SAP Audit Management
5. Identity Access Management
6. SAP GRC
7. SAP Risk Management
8. SAP Global Trade Services
 
In the event that you currently use any of the aforementioned software:

Do you have a support contract with an external provider for SAP Support?

If you employ any of the aforementioned software or have a support contract what is the renewal date?

Where is your SAP infrastructure located and in what format?

When is the contract for third party support of your SAP infrastructure due for renewal?

Do you manage SAP Security, SAP Role Authorisations and SAP Role Designs internally or through an external provider?

If SAP Security, SAP Role Authorisations and SAP Role Designs is managed through an external provider, what is the renewal date?

Which organisational department is responsible for managing overall SAP Security, Role Authorisations and Role Design?

When is your next internal and external audit covering SAP roles and access?

Where do you advertise any SAP related procurement opportunities?

Yours faithfully,

Thomas