Overview

Security Weaver's Access Management solution offers a holistic approach to identity and access management, specifically tailored for SAP environments. Since 2004, it has provided integrated yet modular governance, risk, and compliance (GRC) solutions that ensure superior application performance, rapid implementation, and a high return on compliance investments. The platform covers the entire access management lifecycle, from access requests and approvals to segregation of duties (SoD) conflict resolution, sensitive access reporting, emergency access management, automated provisioning, incident management, and access recertification. Its design aims to reduce the workload for compliance tasks, eliminate the need for additional hardware investments, and minimize installation requirements, thereby lowering the total cost of ownership and enhancing return on investment.

Features and Capabilities

• Separations Enforcer: Simplifies and strengthens single and cross-system access management while reducing segregation of duties conflicts.
• Emergency Repair: Manages temporary access with pre-defined workflows and ad-hoc requests, ensuring audit and security requirements are met.
• Secure Enterprise: Offers a customizable SoD matrix to control and manage access across all SoD-relevant applications, available as an on-premise solution or through the cloud.
• Secure Provisioning: Automates user provisioning to improve productivity while ensuring protection against inappropriate access.
• Role Recertification: Simplifies the recertification process and automatically updates users, saving time and reducing the risk of human errors.
• Automated Mitigations: Enables organizations to catch and mitigate every SoD violation, reduce fraud, and facilitate easier and more cost-effective audits.
• Process Auditor: Utilizes access management policy templates to automate detection, alerting, and case management for access policy violations.
• Dynamic Matrix: Allows enterprises with large SAP environments to accurately report on access risks at the authorization object and field value levels.