Security and Compliance Software

Thomas made this Freedom of Information request to Norfolk Police and Crime Panel

This request has been closed to new correspondence. Contact us if you think it should be reopened.

The request was successful.

Dear Norfolk Police and Crime Panel,

Can you please confirm if you currently use or plan to use any of the
following software:

1. SAP Business Integrity Screening

2. SAP Access Control

3. SAP Process Control

4. SAP Audit Management

5. Identity Access Management

6. SAP GRC

7. SAP Risk Management

8. SAP Global Trade Services

In the event that you currently use any of the aforementioned software:

Do you have a support contract with an external provider for SAP Support?

If you employ any of the aforementioned software or have a support
contract what is the renewal date?

What ERP system do you use?

Where is your SAP infrastructure located and in what format?

When is the contract for third party support of your SAP infrastructure
due for renewal?

Do you manage SAP Security, SAP Role Authorisations and SAP Role Designs
internally or through an external provider?

If SAP Security, SAP Role Authorisations and SAP Role Designs is managed
through an external provider, what is the renewal date?

Which organisational department is responsible for managing overall SAP
Security, Role Authorisations and Role Design?

When is your next internal and external audit covering SAP roles and
access?

Where do you advertise any SAP related procurement opportunities?

Yours faithfully,

Thomas

Information Management, Norfolk Police and Crime Panel

5 Attachments

Good Morning,

 

Freedom of Information Act 2000 – Information Request ENQ-288292-L1M9W6

 

Thank you for your request for information under the Freedom of
Information Act 2000 received on 03 October 2018.

 

Andrew Swan will be dealing with your request.
 
We have up to 20 days in which to deal with your request. If we require
clarification regarding your request, we will contact you to explain this.
The 20 working day period will then start from the day that we receive
your clarification.
 
You will also be informed in advance if there is a charge for supplying
copies of the information.

 

Please also be aware that, if the requested information contains
references to any third parties, we may need to consult these individuals
about the release of their personal data before making a decision whether
or not to release the information to you.

 

We will also provide an explanation if any information is not released to
you.

 

Should you have any queries regarding your request, please contact the
team by email [1][Norfolk PCP request email] or by telephone
01603 222661.

 

Yours sincerely,

 

Sarah Cooper, Business Support Assistant

Information Compliance Team

Dept: 01603 222661

Room 043, County Hall, Norwich

[2]Norfolk County Council   [3]Twitter[4]Facebook[5]Web

[6]Campaign Logo

 

show quoted sections

Information Management, Norfolk Police and Crime Panel

Dear Thomas,

 

Please find below the responses to your enquiries.

 

Dear Norfolk Police and Crime Panel,

Can you please confirm if you currently use or plan to use any of the
following software:

 

1. SAP Business Integrity Screening

Not Applicable

 

2. SAP Access Control

Not applicable

 

3. SAP Process Control

Not applicable

 

4. SAP Audit Management

Not applicable

 

5. Identity Access Management

Sailpoint (some aspects)

 

6. SAP GRC

Not applicable

 

7. SAP Risk Management

Not applicable

 

8. SAP Global Trade Services

 

In the event that you currently use any of the aforementioned software:

 

Do you have a support contract with an external provider for SAP Support?

Not applicable

 

If you employ any of the aforementioned software or have a support
contract what is the renewal date?

SailPoint - The SailPoint software license & support & maintenance
services expire on 28.02.2019

 

What ERP system do you use?

Oracle e-Business Suite Finance and HR - EBS annual maintenance is renewal
is 1^st April (there is no documented end date).

 

Where is your SAP infrastructure located and in what format?

Not applicable

 

When is the contract for third party support of your SAP infrastructure
due for renewal?

Not applicable

 

Do you manage SAP Security, SAP Role Authorisations and SAP Role Designs
internally or through an external provider?

Not applicable

 

If SAP Security, SAP Role Authorisations and SAP Role Designs is managed
through an external provider, what is the renewal date?

Not applicable

 

Which organisational department is responsible for managing overall SAP
Security, Role Authorisations and Role Design?

Not applicable

 

When is your next internal and external audit covering SAP roles and
access?

Not applicable

 

Where do you advertise any SAP related procurement opportunities?

Not applicable

 

If you are dissatisfied with our handling of your request you have the
right of appeal through the Council’s internal review procedure by setting
out the grounds of your appeal in writing to:

 

[1][email address]

or Information Compliance Team

Room 043

County Hall

Martineau Lane

Norwich

NR1 2DH

 

An appeal should be submitted within 40 working days of the date of this
notice and should be identified as "FOI Appeal".

 

If you are dissatisfied after pursuing the complaints procedure, you may
apply to the Information Commissioner under Section 50 of the Act for a
decision whether your request for information has been dealt with in
accordance with the requirements of Part I of the Act.  Refer to the ICO
Website at: [2]https://ico.org.uk/concerns/ for advice on how to report a
concern.  Or you can write to them at:

 

First Contact Team

Information Commissioner's Office

Wycliffe House

Water Lane, Wilmslow

Cheshire

SK9 5AF

 

Yours sincerely

 

Andy Swan, Senior Information Compliance Officer

Information Management Service

[3]Norfolk County Council   [4]Twitter[5]Facebook[6]Web

 

[7]Campaign Logo

From: Information Management

 

show quoted sections