A Good Girl's Guide to Murder (A Good Girl's Guide to Murder, #1)
Nbc universal puts sap system security in the spotlight
1.
Case Study
Major motion picture studios employ a tried and true formula to manage the risk
associated with a new film release: Start with a great screenplay, sign a
bankable star, and entrust the project to a director with a résumé of hits and a
track record of staying on budget. A studio holding steady with this strategy will
have its share of successes, such as Universal Pictures’ Jurassic Park, Jaws,
ET: The ExtraTerrestrial, and the Bourne series.
For NBCUniversal, which owns and operates television and cable networks such
as NBC, Bravo, and USA, and theme parks like Universal Studios Hollywood in
addition to its Universal Pictures film business — the formula it adheres to in
churning out both bigscreen and smallscreen hits is akin to its corporate
governance, risk, and compliance (GRC) strategy: Have a vision, stay within
budget, and keep surprises to a minimum.
At a Glance
Goal: Meet auditor requirements for critical access, achieve SarbanesOxley (SOX)
compliance, minimize segregation of duties (SoD) conflicts, and establish SAP user
access process and guidelines
Strategy: Integrated Security Weaver Secure Provisioning, Emergency Repair, and
Separations Enforcer with existing SAP systems
Outcome: Eliminated SoD conflicts, provided business unit ownership of access
provisioning through selfservice model, lowered the cost of compliance, and reduced
access provisioning process from seven to three business days
This strategy was especially important for NBCUniversal in solving its user
provisioning challenge of approximately 5,400 users across a complex SAP
landscape running globally in more than a dozen countries across about 120
businesses. An SAP customer since 2002, the organization now runs SAP
Business Suite across nearly every component of its vast news and
entertainment operations. To protect this investment, the business needed to
ensure SAP users stay “onscript.” For instance, an employee responsible for set
construction shouldn’t have free rein over creating, approving, and paying
invoices. While protecting against segregation of duties (SoD) risks has always
been a concern, the organization’s approach toward mitigating this risk had to
change when Comcast Corporation completed its acquisition of NBCUniversal
from GE in 2011. The new owners made a new GRC strategy and an investment
Lights, Camera, Action: NBCUniversal Puts SAP
System Security in the Spotlight
by Ken Murphy, Features Editor | insiderPROFILES, Volume4, Issue 4
October 1, 2013
This article explores NBCUniversal's journey to solve a user provisioning challenge for roughly 5,400
SAP users across a complex global landscape in more than a dozen countries and across roughly 120
businesses. Learn how NBCUniversal met auditor requirements for critical access, achieved Sarbanes
Oxley (SOX) compliance, and minimized segregation of duties (SoD) conflicts, while establishing SAP
user access guidelines.
YOU MAY ALSO LIKE THESE
ARTICLES FROM
Best Practices for Setting Up Authorization in
Process Control 10.0
Portal and SAP System Provisioning in One
Step
Harness Risk Threshold Definition to Drive Ad
Hoc Risk Escalation
Q&As | Case Studies | Blogs | White Papers | Webinars | Videos | Podcasts | Books | Events | Magazines | Why Subscribe?
Search
FINANCIALS HR BI HANA SCM CRM ADMIN/DEV GRC PROJECT MANAGEMENT ROADMAP
ShareShareShareShareMore
A Blockbuster
Partnership
SAP partner Security
Weaver was instrumental
in helping NBCUniversal
solve its user
provisioning challenge of
around 5,400 users
across more than 12
countries and 120
businesses. To find out
more about Security
Weaver’s integral role in
the project and download
a PDF version of this
article click here.
TRENDING TOPICS