Access Informer Logo

ACCESS INFORMER

A simple yet powerful solution to collect, analyze and monitor
authorizations across your key systems

OUR PRODUCT


Access Informer

Access Informer Solution

  • Capture snapshots of authorizations across platforms, including SAP®, Active Directory® (AD), Network Shares, and SharePoint®
  • Configure and schedule the extractions of authorizations
  • Non-intrusive solution with read-only access to the target environments. Embeds an SAP NetWeaver® Certified connector (ERPConnect®). No agent or custom ABAP® code is required
  • Store snapshots on MS SQL Server® (standard setup), MS Azure SQL® (cloud setup), or MS SQL Server Express® (standalone setup)
  • Leverage built-in queries, intuitive drill-downs and 80+ predefined reports
  • Produce reports in Excel format for further analysis, and in CSV format for further interoperability with other reporting solutions
  • Maintain a compliance ruleset for SAP
  • Integrate the SAP GRC User Transaction usage
  • Build a custom compliance dashboard on PowerBI®
Benefits

Key Benefits

  • Perform complex and off-line analysis without impacting the performance of production environments
  • Increases visibility of authorizations and risk across the organization
  • Reduces the effort and complexity of performing reviews of authorizations across platforms
  • Reviews authorizations without requiring advanced technical knowledge
  • Further automate periodic control activities with scheduled extractions and configured reports/batches
  • Visualize the status and evolution of Security and Compliance KPIs with the embedded Dashboard
  • Identify the root cause for sensitive access and SOD conflicts and assess the impact of removing authorizations
  • Prioritize remediation activities by leveraging the SAP User Transaction usage information in the reports and analysis
  • Compare details of authorizations between snapshots and environments
  • Restore archived snapshots to investigate and review authorizations at a specific point in time
Challenges

Typical Use cases

  • Perform ad hoc technical Investigation of authorization issues and incidents
  • Execute regular compliance and clean-up activities
  • Perform a quality review of an SAP GRC ruleset
  • Facilitate remediation activities of removing sensitive access and SOD conflicts
  • Check for sensitive access and SOD conflicts throughout the implementation of a project and prior to a cutover or go-live
  • Provide support for security redesign projects and avoid reaching the user assignment limits of SAP roles and AD groups
  • Identify and remove orphan application accounts, which are no longer linked to an active AD account
  • Simplify the review of sensitive access and potential conflicting access when employees change job responsibilities within the organization
  • Extract data to support initiatives to periodically re-certify access
  • Perform impact assessments of removing authorizations and reduce the amount of testing required

Our Services


Services

SUBSCRIPTION SERVICE

  • Annual subscription for the use of the Access Informer solution
  • Installation of the extraction and backend processes
  • Configuration and scheduling of the extraction process
  • Configure the storage of snapshots on SQL Server or Azure SQL
  • Provide training on Access Informer desktop application
  • Includes application updates and support
  • Optional Managed Extraction Service
  • Contact us for a quote
Use Cases

CONSULTING SERVICES

  • Leverage the Access Informer solution to provide analytics to support and accompany initiatives, including
    • Redesign activities for SAP role and AD groups
    • Quality review of GRC ruleset
    • Remediation effort for sensitive access and SOD conflicts
    • Periodic compliance reviews
    • Security assessments and preparation for specific audits
    • Optimize licenses
  • Custom Development Services
    • Create additional connectors for in-house applications
    • Modify the Access Informer solution to meet specific reporting needs
    • Configure and build a PowerBI compliance Portal for Management
    • Build custom .NET applications integrated with SAP
  • Training Services
    • Auditing SAP and AD Security
Access Informer

ONE WEEK SECURITY ASSESSMENT
:: LIMITED AVAILABILITY ::

  • CHF 12,000 all-inclusive and on-site
  • Local installation of the Access Informer solution
  • Perform multiple extractions of authorizations from supported AD, SAP, network share, and SharePoint environments
  • Analyze the information together with customer representative(s) to demonstrate the capability of the solution and provide timely observations throughout the week
  • Produce additional reports to support any customer initiatives and projects
  • Conclude the week with a presentation of the key observations and recommendations
  • All detailed reports generated during the week remain at the customer's disposal after the review
  • The cost of this assessment is deducted from the first annual subscription of the Access Informer solution, if concluded within 6 months of the assessment

News


Recent events

  • May 29-30, 2017 in Munich - ISACA EuroCACS Conference
  • June 14-16, 2017 in Amsterdam - SAPinsider GRC2017 Conference
  • October 10-12, 2017 in Nuremberg - ITSA IT Security Expo and Congress

Download

Company Presentation
Presentation

Brochure
Presentation

Subscribe to our Newsletter

Get in touch


Main Office

Access Informer Security Solutions GmbH
c/o Cofigest Management SA
Chamerstrasse 77
6300 Zug, Switzerland

Phone  +41 (0) 41 588 07 32
Contact Us  Contact Us

VAT Number: CHE-231.957.314
DUNS Number: 486659647

Sales Office

Access Informer Security Solutions GmbH
Ch. Du Bochet 13B
1110 Morges, Switzerland

Linkedin Twitter

About us


We are committed to simplifying access reviews across the enterprise to timely identify and remediate obsolete and excessive access

The company was founded in Zug, Switzerland in 2012. We initially focused on IT and SAP Security Consulting services to bootstrap the development of the Access Informer solution and pivoted to a solution provider in 2015.

We have leveraged over 15 years of experience in the field to design a simple yet powerful solution to collect, analyze and monitor authorizations across your key systems, including SAP ERP, Active Directory, SharePoint and Network Shares.

Cyril Hauppert   Linkedin Profile

Founder

Cyril Hauppert
  • Over 17 years of experience in IT Consulting, Audit, Security & Control roles in large multinationals including Sun Microsystems, KPMG, Altria/Philip Morris and Kraft Foods
  • Combines Business Degree with IT Security technical knowledge and programming skills
  • Achieved key IT Security and Project Management certifications, including CISSP, CISA, CISM, CGEIT, CRISC, ABCP, and PMP

Michael FlÜhler   Linkedin Profile

Operations

Michael Fluehler
  • Seasoned professional in the areas of management consulting and corporate finance
  • Extensive experience in management positions and leading strategic, international projects for renowned companies in the Financial Service, Consultancy and FMCG industries
  • Master in Economics and a master in advanced European Studies

Antonio Fontes   Linkedin Profile

Technical Advisor

Antonio Fontes
  • OWASP Geneva: Chapter leader
  • Web application threats and countermeasures
  • Secure development lifecycle
  • Penetration testing and vulnerability assessment
  • Software threat modelling and risk analysis

Contact Us  Contact us for a Demo


Business Portal


Logo