a member of groupelephant.com

beyond corporate purpose

24-25
JUNE
2020

Data security for SAP .live

A virtual experience brought to you by EPI‑USE Labs – accessible anywhere

REGISTER NOW

This event is now finished.

If you would like access to the on-demand recordings, please contact us.

Your SAP data security is more at risk than ever. Cybercriminals are taking advantage of this period of uncertainty, with remote working and overstretched IT teams increasing the risks of your data falling into the wrong hands. 

Our virtual conference zooms in on this challenge with a range of sessions you can’t afford to miss, from simple steps you can take now to reduce your risks, to in-depth discussions on data privacy compliance. 

Join industry experts and other companies like yours to find out how you can optimise your SAP security and keep your data safe.

CONTACT USVIEW SPEAKERS
interactive-presentations

Join interactive presentations

Enjoy expert presentations from around the globe addressing different aspects of SAP security

post-event-access

Access all material post‑event

Get access to everything after the event, and share it with colleagues

live-qa

Engage in live Q&A sessions

Ask the presenters your questions in live Q&A sessions

customer-presentations

Learn from other clients

Find out how other organisations have solved challenges like yours

Event topics

Join the virtual conference to find out more about these key themes.

proactive-sap-security

Proactive SAP security

Be proactive. Protect your system in advance.

data-privacy-regulations

Data privacy regulations

Are you compliant with legislation like GDPR, CCPA and POPIA?

risk-management

Risk management

Mitigate your risks in an agile SAP environment.

secure-nonproduction-environments

Secure non-production environments

How can you scramble and mask identifiable information?

risk-monitoring

Risk monitoring

Who is looking at your sensitive SAP data?

grc

Governance, risk management, and compliance (GRC)

How to keep your business agile and secure.

threats-to-big-business

Threats to big business

Can you keep your data safe?        

security-across-you-infrastructure

Security across your IT infrastructure

Mask and monitor across both SAP and non-SAP systems.

security-across-you-infrastructure

COVID-19's impact on security

Address additional business risks during this period, such as remote working.

Preliminary agenda

24 June
25 June
15:00 - 15:45 (Europe) 14:00 - 14:45 (BST) 9:00 - 9:45 (EST)
Keynote: Security & Compliance in a changing global economy
Presented by:
Laura Vetter
Dudley Cartwright
Paul Hammersley
Warren Eiserman
Read more >

The global economy is evolving more rapidly than ever before, with recent events putting the rate of change into overdrive. Organizations are now operating remotely, and the new ‘work from home’ paradigm is presenting a different set of challenges for security and compliance teams. Security needs to be prioritized, and how organizations react to these challenges will be scrutinized by shareholders, stakeholders and auditors alike. During this session, we will discuss the SAP security and compliance challenges organizations are facing in today’s ever-changing environment.

Add to Calendar
15:45 - 16:15 (Europe) 14:45 - 15:15 (BST) 9:45 - 10:15 (EST)
KPMG: Staying in control over SAP Access Rights
Presented by:
Dennis Hallemeesch
Read more >

Many companies are still struggling with audit findings regarding critical access rights and segregation of duty breaches in their SAP environments. This is often caused by a lack of understanding of the SAP authorization concept, and can also be caused by the complexity of the SAP authorization concept itself. As many organizations will move to S/4HANA in the near future, an investment in SAP authorizations is required. It’s important to get to a clean state before a possible move to S/4HANA. In this session, a standard segregation of duties risk remediation and mitigation approach will be presented.

Add to Calendar
16:15 - 17:00 (Europe) 15:15 - 16:00 (BST) 10:15 - 11:00 (EST)
How Forfarmers and Endeavor improved their GRC compliance for SAP?
Presented by:
Roy Topham
Rob Vleerbos
Nick Achterberg
Read more >

Despite the introduction of GDPR, a 2019 study by Varonis found that 53% of companies had over 1,000 sensitive files that were accessible to every employee. Managing Access Risk is thus something all companies need to focus on. Two of our customers; Forfarmers and Endeavor, will share with us their experiences with GRC through their testimonials. Find out how they managed to address their different compliance challenges in a cost-effective and user-friendly way.

Add to Calendar
17:00 - 17:30 (Europe) 16:00 - 16:30 (BST) 11:00 - 11:30 (EST)
Who is looking at your sensitive data in SAP?
Presented by:
Laura Vetter
Read more >

How do you proactively monitor SAP threat vectors in highly complex & distributed environments? Given our complex IT environments in 2020, monitoring SAP’s risk and revenue-impacting events is crucial for business security, fraud, system health and operations. This session will focus on key areas such as: How organizations mature their SAP security poster, levels 0 through 4; Watching users and discovering unusual behavior; Tracking transfers and changes to sensitive data and Monitoring critical KPIs.

Add to Calendar
17:30 - 18:00 (Europe) 16:30- 17:00 (BST) 11:30 - 12:00 (EST)
Case study: Road to GDPR Compliance for a UK car manufacturing company
Presented by:
James Watson
Priya Rathore
Avinash Mathapati
Read more >

Lessons learned over the last two years of GDPR compliance has taught us that GDPR compliance is more like a marathon than a sprint. In this session, a UK manufacturing client will present their case study, sharing the multiple steps and project waves taken towards GDPR compliance. These included deleting data subjects, complying with GDPR’s Right to Access and the Right to be Forgotten and securing non-production through data masking.

Add to Calendar
18:00 - 18:30 (Europe) 17:00 - 17:30 (BST) 12:00 - 12:30 (EST)
CCPA & Data Privacy: Navigating compliance laws in a changing marketplace
Presented by:
Gericke Potgieter
Read more >

The impact of the Coronavirus (“COVID-19”) has caused numerous disruptions to workplaces around the globe. With orders to “stay at home” in place across the United States and around the world, many organizations have implemented remote working arrangements in addition to virtual online business interactions, creating data security, privacy and compliance concerns. Compliance projects take time to plan and execute, and getting your data privacy plan in place is becoming more urgent than ever. During this session, we will discuss the California Consumer Privacy Act, or CCPA, and how companies should prepare for what lies ahead during the pandemic and when the pandemic is over. We will show you practical steps that you can take now to extend your CCPA compliance project to your SAP systems.

Add to Calendar
18:30 - 19:00 (Europe) 17:30 - 18:00 (BST) 12:30 - 1:00 (EST)
Common SAP Hacks: Is your SAP data as secure as you think?
Presented by:
Paul Hammersley
Read more >

SAP Production systems typically have thousands of users accessing them. How confident are you in the controls you have in place to keep your sensitive data secure within these systems? In this session we look at common loopholes that hackers could find to get access to your sensitive data. They find ways to circumnavigate your security protocols from within the system. Let us show you ways to prevent this and how to identify where these hacks are taking place. One surefire way to reduce these risks is to shrink your attack surface by anonymizing data in your test SAP systems. Join us as we share these tips and more.

Add to Calendar
15:00 - 15:30 (Europe) 14:00 -14:30 (BST) 9:00 - 9:30 (EST)
Strategies for Data Masking outside SAP
Presented by:
Michael De Boer
Read more >

In the current climate, it is critical for your business to adapt to new challenges and minimise risk. With increasing remote access, it is now even more important to keep privacy of your SAP data top of mind. But what about the systems outside SAP? Michael de Boer from DATPROF will share some best practices that are available for systems other than SAP and how you can integrate with your SAP environment to give you better quality test data in the entire landscape.

Add to Calendar
15:30 - 16:00 (Europe) 14:30 - 15:00 (BST) 9:30 - 10:00 (EST)
Agile GRC: What does it mean for you?
Presented by:
Dudley Cartwright
Read more >

It’s a reality that GRC practitioners are facing a continuous barrage of SAP access complexity, as well as regulatory and business change. Join us to learn more about Agile GRC: the mindset, techniques and tools employed by an emerging breed of agile GRC practitioners in organizations running SAP. Find out how solutions are enhancing business buy-in and accountability of risks. The session will cover emerging trends and their impact on the organization’s ability to manage their risk, how the agile revolution is impacting GRC practitioners and how to enhance your organization’s ‘Three lines of Defense’ with agile GRC.

Add to Calendar
16:00 - 16:30 (Europe) 15:00 - 15:30 (BST) 10:00 - 10:30 (EST)
The POPI Act – Don’t get caught by a curveball!
Presented by:
Hayley Levey
Read more >

Legislated data protection in South Africa, and specifically South Africa’s Protection of Personal Information Act 4 of 2013 (POPI Act), did not materialise as expected earlier this year, because of COVID-19. But data security during this global pandemic is even more important than ever, with digital and electronic operating systems replacing any form of physical business interaction. In this session, Hayley Levey will share how businesses, large or small, manage risk every day to be able to survive. COVID-19 is yet another example of how businesses can use this time to effectively implement long-term solutions to address their data compliance obligations, and avoid getting caught by any future curveballs.

Add to Calendar
16:30 - 17:00 (Europe) 15:30 - 16:00 (BST) 10:30 - 11:00 (EST)
Compliance as a business multiplier: The ROI on a strong security culture
Presented by:
Johann Haefele
Gericke Potgieter
Read more >

Certifying to an internationally recognized standard such as ISO27001 is both a financial as well as a business investment. More than just a tick-box exercise, these programs not only reduce risks across multiple processes, they also bring a few unexpected benefits like winning new business, protecting your reputation, and satisfying audit requirements. In this talk, Johann Haefele (CISO) and Gericke Potgieter (Senior Data Analyst) will have a conversation about how a strong security culture will bring tangible benefits to your organization.

Add to Calendar
17:00 - 17:30 (Europe) 16:00 - 16:30 (BST) 11:00 - 11:30 (EST)
KPMG: Managing your personal and sensitive data in SAP
Presented by:
Ram Balasubramanian
Erik Simons
Read more >

Two years into the General Data Protection Regulation (GDPR), experience has shown that many organizations have managed to understand and incorporate the GDPR / Privacy law basics into their IT environments, to demonstrate their compliance with the Regulation. However, many are currently struggling with more complex exercises. We will present KPMG’s better practices and technical solutions for managing your personal and sensitive data in the world of SAP, during this session.

Add to Calendar
17:30 - 18:00 (Europe) 16:30 - 17:00 (BST) 11:30 - 12:00 (EST)
Client case study: Securing your non-production SAP environment
Presented by:
James Watson
Bobby Jagdev
Read more >

An SAP landscape project (such as a migration or an upgrade) includes many key parts, and although it may not be the main reason for the project, security is key. During this session, Bobby Jagdev, an independent contractor, will share how they had to mask the non-production environment for a client to be GDPR compliant. He will also share his experience about how you can plan your SAP project to have security as part of your mindset.

Add to Calendar

On-demand recordings will be made available soon!

CONTACT US

Our speakers

Avinash Mathapati
SAP Security Architect and GDPR IT Project Manager, UK Manufacturing Company
X
LinkedIn
Avinash Mathapati
SAP Security Architect and GDPR IT Project Manager, UK Manufacturing Company
Avinash is an accomplished consultant with a track record of over 13 years in SAP security, internal audits, IT general control testing, GRC Access Controls, GDPR compliance and project management. He has a strong understanding of internal controls, the Segregation of Duties framework and data compliance. Avinash also has experience in SOX compliance and audits in the automobile, utility and manufacturing domains.
Bobby Jagdev
Independent SAP Architect
X
LinkedIn
Bobby Jagdev
Independent SAP Architect
Bobby is an independent SAP Technical Lead and Architect who has been pivotal to the success of several technology-enabled SAP transformation programmes. He has a wide range of experience across various industry sectors, with a broad background in both SAP application and infrastructure solution design.
Dennis Hallemeesch
Partner GRC Technology, KPMG Advisory
X
LinkedIn
Dennis Hallemeesch
Partner GRC Technology, KPMG Advisory
https://www.linkedin.com/in/dennis-hallemeesch-0ba4194/
Dennis is leading the GRC Technology unit within KPMG Advisory NV. This unit focuses on embedding controls as part of ERP implementation projects. Besides defining internal control frameworks and embedding these within the organization, his team is responsible for implementing authorization concepts for SAP and Microsoft Dynamics 365. Dennis has been involved personally in over 50 SAP authorization implementations, and a large number of SAP segregation of duty remediations. Dennis has been responsible for multiple process control implementations to support the testing of internal controls, and the automated testing of IT controls.
Dudley Cartwright
CEO, Soterion
X
LinkedIn
Dudley Cartwright
CEO, Soterion
https://www.linkedin.com/in/dudley-cartwright-7ba2aa5/
With over 20 years of SAP Authorization experience, Dudley’s strong technical understanding combined with his sharp business knowledge has allowed him to implement security solutions of the highest quality for companies all around the world. Dudley has a passion for implementing “fit-for-purpose” value-added solutions – a philosophy that has become the cornerstone of Soterion’s mission.
Erik Simons
Senior Manager, KPMG
X
LinkedIn
Erik Simons
Senior Manager, KPMG
Erik is a Senior Manager at KPMG Enterprise Solutions (SAP), focusing on SAP S/4HANA and SAP Business Integrations/ Separations. Erik has widespread business knowledge (Logistics, Manufacturing and Finance), gathered in an international environment. He has fulfilled different roles during SAP implementations, Mergers and Separations (including integration and process development in SAP MM, SD, FICO, Manufacturing etc.), developing his leadership skills and using his business knowledge to ensure delivery and acceptance.
Gericke Potgieter
Senior Data Analyst, EPI-USE Labs
X
LinkedIn
Gericke Potgieter
Senior Data Analyst, EPI-USE Labs
https://www.linkedin.com/in/knowledgeengineer/
Gericke is responsible for marketing systems management and data analytics at EPI-USE Labs. He is a qualified ISO 27001 Lead Implementer and has an MA in Socio-informatics (Decision Making Theory). He has spent most of his career in IT, strategy consulting and software development.
Hayley Levey
Associate, Commercial Law and Tax Division, VDT
X
LinkedIn
Hayley Levey
Associate, Commercial Law and Tax Division, VDT
https://www.linkedin.com/in/hayley-levey-682942127/
An Associate at VDT Attorneys Inc, Hayley’s interests lie in the commercial, corporate and contract fields. Her areas of expertise include corporate and commercial transactional work such as the establishment of companies and all ancillary documents. Her focus on the legal field of data protection enables her to share in-depth knowledge about POPIA, the data protection regulation for South Africa.
James Watson
SAP Landscape and Data Management Specialist, EPI-USE Labs
X
LinkedIn
James Watson
SAP Landscape and Data Management Specialist, EPI-USE Labs
https://www.linkedin.com/in/james-watson-4a162a3b/
James is a senior consultant in the EPI-USE Labs Europe team, with 15 years of experience working specifically with SAP Utility implementations. He is currently involved in data migration and system landscape optimisation projects, while having a personal interest in data security and GDPR. James is blogging about GDPR and functional ISU information while sharing his long history of customer and project management.
Johann Haefele
CISO, EPI-USE Labs
X
LinkedIn
Johann Haefele
CISO, EPI-USE Labs
https://www.linkedin.com/in/johann-haefele-a34a822a/
Johann has an extensive background in information security, risk analysis and data privacy. He is currently overseeing the ISO27001:2013 and SOC 2 type 2 compliance for EPI-USE Labs. He also helps other companies within groupelephant.com to implement the requirements of the ISO27001 standard, and fosters a culture of information security throughout the group.
Laura Vetter
Chief Technologist, Evolutio
X
LinkedIn
Laura Vetter
Chief Technologist, Evolutio
https://www.linkedin.com/in/laura-vetter-ba700780/
Laura is a certified Subject Matter Expert for both Splunk and Performance Monitoring Tools. She is particularly skilled in understanding how those tools can match the visibility, monitoring, alerting and reporting needs of Fortune 500 organizations. Laura is well-versed in pairing Splunk with other data-sets, SAP being one of them, with a deep understanding of the value proposition of pairing the capabilities of multiple tools together to take monitoring to the next level.
Michael De Boer
Partner Manager at DATPROF
X
LinkedIn
Michael De Boer
Partner Manager at DATPROF
Michael de Boer loves manipulating data and specializes in test data management. He brings consultants and technical software together, creating great customer solutions, and likes to share his experiences more widely.
Nick Achterberg
Senior Director Technical Services (SAP) with Endeavor
X
LinkedIn
Nick Achterberg
Senior Director Technical Services (SAP) with Endeavor
Nick manages Endeavor's SAP environment, leading the technical teams in maintaining and evolving our SAP landscape to meet diverse needs across a number of Media, Entertainment, Events and Representation companies. Delivering reliable and intuitive solutions to solve business problems fast is what gets him going. Starting his SAP journey in 1997, initially as an ABAP developer and then Functional Analyst and Project Management, Nick has worked across a range of industry sectors, including recently Viacom, Paramount Pictures, IATA and NBC Universal in designing, developing and deploying integrated business solutions in the SAP ecosystem.
Paul Hammersley
SVP Landscape & Data Services, EPI-USE Labs
X
LinkedIn
Paul Hammersley
SVP Landscape & Data Services, EPI-USE Labs
https://www.linkedin.com/in/paul-hammersley-89554b2/
As Head of Landscape and Data Services, Paul's portfolio includes System Landscape Optimization, and his hands-on experience of implementing Data Sync Manager and helping clients to manage data across the breadth of their SAP landscape is unique. He has specialised knowledge about Data Security and how the General Data Protection Regulation (GDPR) impacts companies running SAP.
Priya Rathore
Business Systems & Data Consultant - SAP SuccessFactors, UK Manufacturing Company
X
LinkedIn
Priya Rathore
Business Systems & Data Consultant - SAP SuccessFactors, UK Manufacturing Company
Priya started her career in the retail and private sectors in the capacity of HR generalist ten years ago. Previously, her roles focused on HR, but at the BBC she embraced working with SAP HCM and data quality management. Currently, she is working as a Senior Consultant in the SAP and SuccessFactors team of a prominent UK manufacturing company, as part of the Business systems delivery team for SAP
Ram Balasubramanian
Senior Manager, KPMG
X
LinkedIn
Ram Balasubramanian
Senior Manager, KPMG
Ram is a technical architect with 13 years of experience in a wide range of ERP engagements such as implementation, roll-out, consolidation, data migration and upgrade projects. His expertise also includes large-scale business transformations, vanilla implementations, and spin-offs on the ERP platforms. Ram has designed and implemented SAP systems with a number of clients. His primary focus is on the SAP S/4HANA suite, and Integrations, Regulatory and compliance standards (IFRS, GDPR) solutions.
Rob Vleerbos
IT Team Lead
X
LinkedIn
Rob Vleerbos
IT Team Lead
As IT team Lead, Rob is responsible for SAP Basis and SAP development at ForFarmers. His team is also responsible for setting up and maintaining authorizations and security across the SAP landscape. Rob has 13 years of IT experience, which include various roll-outs, data migration, authorization and upgrade projects, both in functional and technical roles.
Roy Topham
Data Security Lead, EPI-USE Labs (UK and Europe)
X
LinkedIn
Roy Topham
Data Security Lead, EPI-USE Labs (UK and Europe)
Roy is the Data Security Lead for EPI-USE Labs in the United Kingdom and Europe region. He has many years of experience as a SAP Security Consultant across different regions, and has experience with SOX certification and compliance, together with the design and implementation of SAP Security frameworks. Roy has used the Soterion software suite as an SAP Access Control Consulting tool and has implemented it at several SAP customers.
Warren Eiserman
Senior Vice President, EPI-USE Labs
X
LinkedIn
Warren Eiserman
Senior Vice President, EPI-USE Labs
Warren is a Senior Vice President at EPI-USE Labs, and works within the product management team. With over 20 years of SAP experience, he has responsibility for our go-to-market and partner programmes. Warren is passionate about client experience, and lives by the EPI-USE Labs vision of 'Value through Innovation'.

Our partners

kpmg-logokpmg-logokpmg-logokpmg-logokpmg-logo
eulabs-logo-white

© 2020 EPI-USE Labs

2002 Summit Blvd, #825 Atlanta, Georgia 30319    •    Other Office Locations

Privacy PolicyCookie PolicyDisclaimerCopyrightDon't sell my personal information