Best Practices & Lessons Learned

Avoiding Security Roadblocks to SAP S/4HANA Migrations


Moving to SAP S/4HANA is a complex process, requiring collaboration from multiple stakeholders across the business to deliver the project on time and on budget.  All too often, security ends up being a roadblock to meeting those goals, but it doesn’t have to be.

KPMG and Onapsis work side-by-side with organizations to build security into their SAP S/4HANA migrations to avoid setbacks and establish secure SAP operating models. Join us for a conversation on best practices for a security-by-design approach based on our experience helping customers migrate their systems. Topics include:

  • Aligning stakeholders across security, IT, SAP Basis, and internal audit
  • Putting security-by-design into practice without interfering with or burdening SAP teams
  • The three biggest challenges we hear for each stage of a migration project and how to overcome them
  • Other lessons learned from our customers, so you can avoid those challenges yourself



Charlie Singh | KPMG

Charlie is a Director in KPMG’s Governance, Technology Risk, and Compliance organization with over 20 years of global experience. He is recognized as a savvy leader with strengths in implementing new technologies, leading risk and vulnerability assessments, defining SAP security controls, leading SOX GITC audits, and advising process / control improvements. He has substantial experience working on high profile projects sponsored by the “C-Suite” both internally and as an external advisor. His industry experience encompasses the technology, aviation, life sciences, utilities and industrial sectors among others.

Shane MacDonald | Onapsis

Shane brings over a decade of experience in cybersecurity and data warehouse management to Onapsis. At Onapsis, Shane leads the global sales engineering responsible for customer growth and success in SAP cybersecurity and compliance. Shane joined Onapsis from RSA where he managed North American Pre-Sales for the company's Identity Management business unit. He has also held sales engineering and technical consultant roles at EMC and Aveksa (acquired by RSA). Shane holds a B.S. Business Administration from Boston University.

KPMG and Onapsis

A new approach to security

KPMG and Onapsis work side by side with organizations throughout their migration to SAP S4/HANA to help ensure a secure and efficient outcome. Our approach incorporates cybersecurity process design and technology adoption into your modern ERP project to enable a leading practice SAP security target operating model.

Our new point-of-view article SAP S/4HANA security from the start: Kick off implementation with cybersecurity provides insight into how organizations can ensure that development, security and operations—DevSecOps—are integrated into every phase of a major system implementation for a modern ERP system that is safe and secure from minute one.

Download the Whitepaper