Larry Harrington: How ERP Security Enables Audit and Compliance

By:

September 16, 2019

As the former Chair of the Institute of Internal Auditors and Former Chief Audit Executive for Raytheon Company, Larry Harrington discusses how ERP security enables the audit and compliance process within organizations, aligning CISOs with the internal audit team and maintaining compliance 24/7. “Today, ERP systems are so complicated… it’s really important to look at security from a different perspective,” Harrington explains. “How do we do a continuous auditing process so we make sure that all the crown jewels are protected 365 days a year.” Check out the rest of the video below!

Tags, , , ,
About the Author
Mariano Nunez

Mariano Nunez

CEO & Co-founder

As CEO and Co-Founder of Onapsis, Mariano drives the strategic direction of the company. Under his leadership, Onapsis has become one of the fastest-growing technology and cybersecurity companies in the world. With 20+ years of experience in the cybersecurity industry, both as an executive and as a cyber security expert, Mariano was the first to publicly present on cybersecurity risks affecting ERP platforms and how to mitigate them at major conferences such as RSA, Black Hat and SANS. Mariano’s contributions to the cybersecurity community include developing the first open-source SAP and ERP Penetration Testing frameworks, and uncovering critical zero-day vulnerabilities in SAP, Oracle, IBM, and Microsoft applications. Mariano’s insights are regularly featured in major media outlets such as CNN, Reuters, Wall Street Journal, Nasdaq, Fortune and The New York Times.

More about this author
Back To Blog

Further Reading

Blog

2,000 Hours Reclaimed: How Global Leaders Transformed SAP ITGC Testing

Automating SAP ITGC testing delivers measurable returns on investment by eliminating the hidden operational costs of manual compliance. In the first post of this series, we examined how manual testing drains up to 2,000 resource hours annually and leaves enterprise organizations vulnerable to human error. The second post detailed the technical solution, explaining how transitioning…

Read More
Blog

Automating SAP ITGC Audits: How to Get Results in Minutes, Not Weeks

Automating SAP ITGC testing eliminates the hidden costs of manual compliance by replacing reactive, weeks-long evidence gathering with proactive, automated assessments. Security and SAP Basis teams must transition from manual data collection to centralized automation to reduce human error and eliminate unexpected audit findings. Leveraging Predefined Intelligence Leveraging predefined compliance intelligence allows organizations to instantly…

Read More
Blog

The 2,000-Hour Drain: Why Manual SAP ITGC Audits Are Costing You More Than Just Time

Manual SAP ITGC (IT General Controls) audits require extensive resource hours to satisfy regulatory requirements and internal stakeholders. While many organizations believe manual verification ensures compliance accuracy, relying on human effort to test sprawling SAP landscapes introduces significant operational costs and critical security risks. The Resource Drain: Where Do the Hours Go? Manual SAP ITGC…

Read More