GRC: Case study: Transforming access security through a role rebuild at Armstrong Flooring

  • by Richard Batchelor, Armstrong Flooring
  • March 1, 2019
Learn how Armstrong Flooring undertook a full role rebuild, leveraging usage reports from SAP Access Control and implementing a task-based architecture

Like many companies, Armstrong Flooring has been through many growth cycles, and its SAP security role environment was a conglomeration of poorly built old roles and properly built new roles. Managing the roles, multiple naming conventions, understanding what users needed to do their jobs, and staying SOX compliant was a challenge. Attend this session to learn how Armstrong Flooring undertook a full role rebuild, leveraging usage reports from SAP Access Control and implementing a task-based architecture. Hear firsthand from Armstrong Flooring:

  • The risks the company faced via its former security role environment, including “authorization stacking,” which allowed some users with display access to have update access
  • The benefits of a role rebuild based on usage, like reductions in segregation of duties risks
  • How it utilized SAP Access Control through each stage of a rebuild
  • How the new security environment transformed the risk profile, audit, and compliance processes
  • The company’s next steps, including the creation of business roles to simplify approval processes

Richard Batchelor

See more by this author


Comments

No comments have been submitted on this article. 


Please log in to post a comment.

To learn more about subscription access to premium content, click here.