Is your SAP risk analysis making you question
your existing SAP authorization structure?
Are your user roles overused/exhausted
with critical authorizations and SoDs?
It’s time to give ToggleNow a call and get
Even today, around 47% of SAP customers are not using the right mechanisms to detect and manage risks in their SAP systems.
ToggleNow’s Verity is a product designed to help you efficiently manage Segregation of Duties (SoD) and deal with risk situations at the authorization level in SAP NetWeaver or other related SAP applications.. With Verity, it becomes easy to detect and control SoD implications as well as handle even the most critical risks with great ease.
Verity also provides an option to simulate assignments, helping your organization evaluate risks much before they actually occur. In this way, you are free from overused and exhausted user roles that may arise with critical authorizations and Segregation of Duties (SoDs).
Verity facilitates SAP risk analysis on the basis of standard rulebooks. Custom rulebooks can be added to suit audit requirements, or for easy identification of SoDs and critical risks in transaction codes, authorization objects, and other areas of concern.
Verity helps organizations with execution of effective risk management activities at both the user and the role levels. It offers the option to create and manage mitigation controls within the organization at the business process and sub-business process levels.
Verity comes with an in-built unique Alert Monitor which sends notifications to key monitors when critical transaction codes that are mitigated are being executed. Through this feature, the alerts can be easily reviewed and approved by business process owners.
Record and report conflicts to mitigate the risk of exposure.
Reduce the risk of fraud due to excessive user privileges.
Satisfy industry or government regulations (e.g., SOX)
Export detailed reports on SoD security violations and risks.
Verity rulebook supports industry recommendations and complies with industry standard risks. Further customizations can also be made with ease.
The “Risk Matrix” feature in Verity enables the one-click generation of matrices that are ready for review during the critical audits.
Verity comes with over 10 different reporting formats and also provisions the additional creation of reports with a customized set of fields.
In just a few clicks, existing or new mitigations can be selected and assigned to a specific mitigation control or user.
In addition to efficiently managing large volumes of users and roles, Verity helps you stay compliant with various laws, including SoX, JSoX, SEBI Clause 49, and so on.
|Identify the authorization object for custom transaction code(s)||Need to use ST01 trace or STAUTHTRACE to identify the relevant object.||xPedite automatically scans and identifies the relevant authorization objects.|
|Time Required||At least 15-20 minutes per transaction code.||2-3 seconds per transaction code.|
|SU24 assignment / check-proposal maintenance||Manual, and takes 15-20 minutes (depending on the amount of authorization objects)||Automated, and takes 1-2 minutes|
Find out more about how we can help
your organization navigate its next.
Let us know your areas of interest so
that we can serve you better.
Yes. Verity is provided with an option to utilize any of the industry recommended rulesets. It can be further customized to fit in your business requirements.
Absolutely not! Verity can be implemented on the existing SAP Netweaver systems such as SAP ECC, SAP S/4 HANA systems and can be utilized immediately.
Yes. Mitigation Controls per business process can be easily created and maintained in the Verity application. It further provides easy reporting options.
Yes. Alerts for the Segregation of Duty and Critical Risks can be configured in Verity application. The alerts can be sent to the specific business process owners.
Perfectly! Many of our customers are using Verity application to meet their SoX and Audit requirements. Managing of Risks is way easy with Verity application.
Verity is a part of our Audit Arrays solution suite that is certified by SAP.