THIS EVENT WILL TAKE PLACE ONLINE
UKISUG working in conjunction with SAP have created this event for our Cybersecurity community.
Cybersecurity within most companies has rapidly evolved from being an IT/Security topic to firmly landing on the desks of the rest of the board. The risks are so great that every executive, and every employee needs to be aware of the challenges and their responsibilities. *New figures from the National Fraud Intelligence Bureau show a 7 times spike in reported instances of cyber-crime in UK during the first 6 months of 2021 (£1.3Billion) compared to 2020. This is already a shocking statistic but it’s only the tip of the iceberg; the scale of cybercrime is impossible to accurately estimate because a lot of companies that are victims of it really don’t want it to become public. The financial damage can be significant but the reputational damage resulting from attacks can be long-reaching and ultimately more costly. In addition, regulations continue to evolve to protect shareholders and to protect the personal data and privacy for individuals. These regulations now have ‘teeth’ as Amazon recently found out when they were fined €¾Billion. The added vulnerabilities created by Covid and the exodus of employees to home offices have only proved catalysts to an already incredible situation.
UKISUG and SAP understand the awesome responsibilities this places on us; from ensuring customers data is protected in their datacentres to minimising code vulnerability in their software; from educating their staff to mould a ‘human firewall’ to ensuring that they have appropriate protective processes in place; from ensuring that they are continuously updating/patching their own tools to ensuring that they are offering customers world-leading solutions to protect their estates. For SAP customers, their ‘crown jewels’ are usually stored within their ERP systems and SAP know that cyberattacks are focusing more and more on ERPs** for exactly that reason.
Join the event to hear;
UK loses £1.3bn to fraud and cyber crime so far this year (computerweekly.com)*
ERP applications are under cyber attack, research confirms (computerweekly.com)**
Our Audit, Control and Security (ACS) SIG is a well-supported group attended by a cross-section of professionals working with SAP and representing the following business areas: IT Security; (including SAP Basis experts) IT & Financial Audit; and Risk Management.
Our UKISUG Audit Control & Security SIG Chairs:
Brian Froom has 21+ years’ experience as an IT Auditor across different sectors. He is currently involved in the security and monitoring of Tata Steel’s SAP installations across UK and Europe.
Rhian Parry has been leading Welsh Waters IT External Audits since 2012 along with the SAP Access and Authorisations Annual user reviews with SAP licence Management now in her remit as Dwr Cymru Welsh Water’s SAP Assurance Lead within the SAP Centre of Excellence.
Audit Control & Security SIG Co-chair
UKISUG
Rhian has over 25 years’ service working within the water industry, with a broad range of experience in IT Projects through to Water and Waste Operations and within this time has been involved in many full lifecycle implementations, SAP upgrades and strategic SAP Roadmap projects.
Principle Architect in cyber governance, risk and compliance
Turnkey
Andrew Morris has 16 years’ experience of delivering robust cyber solutions in regulated global environments for organisations including Diageo, Anglian Water and for clients of Turnkey.
Audit, Control & Security Co-Chair
UKISUG
Brian has been involved in SAP in both an IT Auditing and Security capacity since 2005. He has 21+ years’ experience as an it Auditor across different sectors. He is currently involved in the security and monitoring of Tata steel’s SAP installations across UK and Europe.
Head of Information Security and Enterprise Architecture
Tata Steel UK
Broad range of roles and functions, from research to engineering, change management to knowledge management, all with an IT aspect. For the past 9 years key interests have included Data Protection and Information Security, including 6 years as CISO for Tata Steel Europe
Head of Roles, Governance, and Compliance
Vodafone
In his current role, he is responsible for steering GRC Solutions in Vodafone’s EVO landscape to ensure adequate Access and Process compliance. He is actively driving multiple compliance and automation initiatives to standardise and streamline processes to align with the company’s strategic vision.
Pre-sales Advisor
Onapsis
Jonathan is a pre-sales advisor at Onapsis who offer mission critical application security, compliance, and resiliency. His background started initially in Finance and spans over 20 years with SAP across supply chain management, Business Intelligence, S/4HANA and data protection/security.
Solution Owner for SAP GRC – Security
SAP
In 2007, Arndt served as product manager for various SAP add-on products, and then in 2013, became pre-sales and product manager for SAP security add-on products. During that time he audited many SAP systems worldwide. September 2019, he became Product Manager for SAP Enterprise Threat Detection.
Head of Finance & Risk CSA, EMEA North
SAP
Currently leads the EMEA North CSA team for Finance and Risk solutions. He has a degree in Accounting and a Master’s degree in Computer Science. Since then, he has over 25 years’ experience in Finance and Security positions with the last 15 years spent working at SAP.
UK/I Lead GRC Customer Solution Advisor
SAP
Paul has been working with SAP UK for just over 6 years. In this time, he has assisted over 50 organisations in their selection of SAP solutions. He is currently working as part of the Customer Solutions Advisory team leading engagement in the UK.
SAP Enterprise Risk Management and Cybersecurity solutions
SAP
Part of the global SAP solutions team, his innovations are supporting companies to reach the desired state of application security, as well as providing the vision on how to modernise enterprise risk management processes.
09:00 - 09:20
UKISUG introduction / Cybersecurity & Information Security @ SAP
Chris Johnston
Head of Finance & Risk CSA, EMEA North - SAP
Rhian Parry
Audit Control & Security SIG Co-chair - UKISUG
09:20 - 09:25
Welcome from Elena Kvochko (SAP CTO)
09:25 - 10:00
Story from a CISO (Tata Steel)
Brian Froom
Audit, Control & Security Co-Chair - UKISUG
Nigel Henderson
Head of Information Security and Enterprise Architecture - Tata Steel UK
10:00 - 10:35
Turnkey – How to engage the CISO
Andrew Morris
Principle Architect in cyber governance, risk and compliance - Turnkey
10:35 - 11:00
Break
11:00 - 11:35
Managing user access at Vodafone
Sukhdeep Singh
Head of Roles, Governance, and Compliance - Vodafone
11:35 - 12:10
SAP Process Control + Onapsis Comply
Jonathan Cooper
Pre-sales Advisor - Onapsis
12:10 - 12:55
Follow a cyber attack and its response in real time
Arndt Lingscheid
Solution Owner for SAP GRC – Security - SAP
Gabs Fiata
SAP Enterprise Risk Management and Cybersecurity solutions - SAP
12:55 - 13:15
Q&A & Close
Paul Lloyd-Smith
UK/I Lead GRC Customer Solution Advisor - SAP
Rhian Parry
Audit Control & Security SIG Co-chair - UKISUG
Uploaded 2 years ago (10-02-2022)
Event: Cybersecurity
Jonathan Cooper presented the Enablement - SAP Process Control & Onapsis Comply JC 2022 at the Cybersecurity Event on 9th February 2022.
Uploaded 2 years ago (15-02-2022)
Event: Cybersecurity
Paul Lloyd-Smith presented the Cybersecurity Slides for the Cybersecurity event on the 9th February 2022.
Uploaded 2 years ago (16-02-2022)
Event: Cybersecurity
Andrew Morris from Turnkey presented How to engage the CISO at the Cybersecurity Event on 9th February 2022
Uploaded 2 years ago (09-03-2022)
Event: Cybersecurity
Our latest insights and thoughts
