Access Informer Logo

ACCESS INFORMER

BUILDING SIMPLE SOLUTIONS TO REVIEW COMPLEX AUTHORIZATIONS

Our Product


Access Informer
Access Informer Solution
  • Capture snapshots of authorizations across platforms, including SAP®, Active Directory® (AD), Network Shares, and SharePoint®
  • Configure and schedule the extractions of authorizations
  • Non-intrusive solution with read-only access to the target environments. Embeds an SAP NetWeaver® Certified connector (ERPConnect®). No agent or custom ABAP® code is required
  • Store snapshots on MS SQL Server® (standard setup), MS Azure SQL® (cloud setup), or MS SQL Server Express® (standalone setup)
  • Leverage built-in queries, intuitive drill-downs and 80+ predefined reports
  • Produce reports in Excel format for further analysis, and in CSV format for further interoperability with other reporting solutions
  • Maintain a compliance ruleset for SAP
  • Integrate the SAP GRC User Transaction usage
  • Build a custom compliance dashboard on PowerBI®
Benefits
Key Benefits
  • Perform complex and off-line analysis without impacting the performance of production environments
  • Increases visibility of authorizations and risk across the organization
  • Reduces the effort and complexity of performing reviews of authorizations across platforms
  • Reviews authorizations without requiring advanced technical knowledge
  • Further automate periodic control activities with scheduled extractions and configured reports/batches
  • Visualize the status and evolution of Security and Compliance KPIs with the embedded Dashboard
  • Identify the root cause for sensitive access and SOD conflicts and assess the impact of removing authorizations
  • Prioritize remediation activities by leveraging the SAP User Transaction usage information in the reports and analysis
  • Compare details of authorizations between snapshots and environments
  • Restore archived snapshots to investigate and review authorizations at a specific point in time
Challenges
Typical Use cases
  • Perform ad hoc technical Investigation of authorization issues and incidents
  • Execute regular compliance and clean-up activities
  • Perform a quality review of an SAP GRC ruleset
  • Facilitate remediation activities of removing sensitive access and SOD conflicts
  • Check for sensitive access and SOD conflicts throughout the implementation of a project and prior to a cutover or go-live
  • Provide support for security redesign projects and avoid reaching the user assignment limits of SAP roles and AD groups
  • Identify and remove orphan application accounts, which are no longer linked to an active AD account
  • Simplify the review of sensitive access and potential conflicting access when employees change job responsibilities within the organization
  • Extract data to support initiatives to periodically re-certify access
  • Perform impact assessments of removing authorizations and reduce the amount of testing required

Our Services


Services
SUBSCRIPTION SERVICE
  • Annual subscription for the use of the Access Informer solution
  • Installation of the extraction and backend processes
  • Configuration and scheduling of the extraction process
  • Configure the storage of snapshots on SQL Server or Azure SQL
  • Provide training on Access Informer desktop application
  • Includes application updates and support
  • Optional Managed Extraction Service
  • Contact us for a quote
Use Cases
CONSULTING SERVICES
  • Leverage the Access Informer solution to provide analytics to support and accompany initiatives, including
    • Redesign activities for SAP role and AD groups
    • Quality review of GRC ruleset
    • Remediation effort for sensitive access and SOD conflicts
    • Periodic compliance reviews
    • Security assessments and preparation for specific audits
    • Optimize licenses
  • Custom Development Services
    • Create additional connectors for in-house applications
    • Modify the Access Informer solution to meet specific reporting needs
    • Configure and build a PowerBI compliance Portal for Management
    • Build custom .NET applications integrated with SAP
  • Training Services
    • Auditing SAP and AD Security
Access Informer
ONE WEEK SECURITY ASSESSMENT
:: LIMITED AVAILABILITY ::
  • CHF 12,000 all-inclusive and on-site
  • Local installation of the Access Informer solution
  • Perform multiple extractions of authorizations from supported AD, SAP, network share, and SharePoint environments
  • Analyze the information together with customer representative(s) to demonstrate the capability of the solution and provide timely observations throughout the week
  • Produce additional reports to support any customer initiatives and projects
  • Conclude the week with a presentation of the key observations and recommendations
  • All detailed reports generated during the week remain at the customer's disposal after the review
  • The cost of this assessment is deducted from the first annual subscription of the Access Informer solution, if concluded within 6 months of the assessment

News


Recent events
  • May 29-30, 2017 in Munich - ISACA EuroCACS Conference
  • June 14-16, 2017 in Amsterdam - SAPinsider GRC2017 Conference
Next events
  • October 10-12, 2017 in Nuremberg - ITSA IT Security Expo and Congress
Download

Company Presentation
Presentation

Brochure
Presentation

Subscribe to our Newsletter

Get in touch


Main Office

Access Informer Security Solutions GmbH
c/o Cofigest Management SA
Chamerstrasse 77
6300 Zug, Switzerland

VAT Number: CHE-231.957.314
DUNS number: 486659647

Sales Office

Access Informer Security Solutions GmbH
Ch. Du Bochet 13B
1110 Morges, Switzerland

P: +41 (0)41 588 07 32
>> Contact Form <<

Linkedin Twitter

About us


The company was founded in Zug, Switzerland in 2012. Our goal was to provide IT and SAP Security Consulting services while developing the Access Informer solution. Our vision was to convert 15+ years of experience in the field into a simple yet powerful suite of applications. We are dedicated at easing the pain of auditing and reviewing authorizations across platforms. The Access Informer application was initially released mid-2015 focused on SAP and AD. We then collaborated with a large multinational to evolve the features and include extractions and analysis for Network Shares and SharePoint in 2016.

Cyril Hauppert

Founder

Cyril Hauppert
  • Over 17 years of experience in IT Consulting, Audit, Security & Control roles in large multinationals including Sun Microsystems, KPMG, Altria/Philip Morris and Kraft Foods
  • Combines Business Degree with IT Security technical knowledge and programming skills
  • Achieved key IT Security and Project Management certifications, including CISSP, CISA, CISM, CGEIT, CRISC, ABCP, and PMP
Michael FlÜhler

Operations

Michael Fluehler
  • Seasoned professional in the areas of management consulting and corporate finance
  • Extensive experience in management positions and leading strategic, international projects for renowned companies in the Financial Service, Consultancy and FMCG industries
  • Master in Economics and a master in advanced European Studies
Antonio Fontes

Technical Advisor

Antonio Fontes
  • OWASP Geneva: Chapter leader
  • Web application threats and countermeasures
  • Secure development lifecycle
  • Penetration testing and vulnerability assessment
  • Software threat modelling and risk analysis

Business Portal


Logo