News & Events

ERP Maestro Introduces Next-Generation Access Risk Analysis Capabilities at SAPinsider GRC and IIA GAM Conferences

Date_Icon
March 22, 2017

Financial Impact Analysis, Online Drill-Down Dashboard Among New Features Enabling Quicker Detection and Understanding of Access Risks


LAS VEGAS, NEVADA – March 22, 2017 – ERP Maestro, a leader in cloud-based automated controls for access to SAP®, announced today significant enhancements to its Access Analyzer software as a service platform. The new capabilities are being introduced to attendees at the annual SAPinsider GRC and IIA GAM conferences this week and give enterprises unprecedented visibility into the causes of SAP access risk and security weaknesses.

Online drill-down reporting lets companies visualize their risk with a beautifully enhanced, simple interface. Customers can dig deeper to understand the root causes of authorization issues by simply clicking – then determine the users that have actually executed on that risk. Financial Impact Analysis allows further drill-down capabilities to understand actual modifications made. It also allows compliance teams to associate a monetary value to associated risk and any potential fraud.

Financial Impact Analysis

Financial Impact Analysis is a new add-on module of Access Analyzer that empowers IT, Audit and business process owners with the ability to quickly see and search modifications made to data in SAP that indicate potential fraud or other access-related risks. This allows a laser-focus into only those actions that pose the highest risk for an organization, and accelerates the time for remediation.

  • Deepest level of access utilization detail available: Exposes not just what a user can change, but what a user actually did change using the access granted.
  • Determine financial relevancy of risks: A monetary value can be assigned to the modifications made to help identify instances of fraud. This information is often requested by auditors but is also very valuable in understanding the tangible risk to the business.
  • Powerful query tool: Users can search the SAP change log by transaction code, user, business function or rule and filter results to show only records reflecting changes during the period analyzed.
  • Longer change data storage: Because Access Analyzer is powered by the cloud, SAP change log data may be stored for longer than what is typical with existing solutions – as long as 18 months.

Online Dashboard and More Reporting Features

Access Analyzer’s reporting features become significantly more powerful when backed by the change data and intelligence provided by Financial Impact Analysis. Beautiful, high level dashboard reporting provides a meaningful picture of risk at-a-glance, with the added ability to drill all the way down to specific changes made that triggered the risk, and who executed those changes.

 

  • Change-Data Utilization Overlay: The current overlay of actual utilization that exists in several Access Analyzer reports is now augmented with actual change data behind the utilization, further isolating Executed Risk to allow simplification and reduction of a remediation program.
  • Simple online, drill down reporting: Beautiful dashboards, built using ERP Maestro’s award-winning best practices-based reporting.
  • Periodic Analysis and reports: Ability to schedule recurring Analysis jobs and recurring One-Click Reports.


Additional Enhancements to Preventative Controls

  • Deep dive into periods of elevated access: Modifications made by users while they had elevated access is now integrated. Search based on dates, user, specific transaction codes, and set up recurring searches.
  • Compliant provisioning supports job based designs: Role tagging allows administrators to annotate Roles, making them very easy for non-SAP users to find and select for provisioning. This is a key feature that empowers task-based role grouping in the provisioning process.

“Our mission is to save companies running SAP time, effort and expense when it comes to managing controls for access by building beautifully simple, turnkey solutions to solve their problems,” said Jody Paterson, CEO and Co-Founder of ERP Maestro. “These enhancements are a huge step towards fulfilling that mission, and reflects all the learnings we’ve had from our customers these last four years. It will make people’s lives easier, and I couldn’t be more excited to introduce it to the market.”



About ERP Maestro
Using the power of the cloud paired with in-house SAP® and audit expertise, ERP Maestro takes the complexity out of managing access risk and security in SAP environments with a software-as-a-service that provides risk-based, business-ready segregation of duties and sensitive access reporting, automated emergency access and secure provisioning. Expert hands-on guidance along the way empowers organizations to accelerate fraud prevention, audit preparation and governance, risk and compliance
(GRC) maturity. Learn more at www.erpmaestro.com.



Read our official press release here: http://www.prweb.com/releases/prweb14174256.htm


risk overview dashboard

Grant Thornton Leverages ERP Maestro to Enhance Audit and Advisory Services for Clients

Date_Icon
March 22, 2017
LAS VEGAS, NEVADA – March 22, 2017 – ERP Maestro announced today at the SAPinsider GRC 2017 conference that the company has teamed up with Grant Thornton, LLP to enhance audit and advisory services for its clients running SAP® ERP applications. The globally-recognized audit firm has begun utilizing ERP Maestro’s cloud-based Access Analyzer solution in client audit and advisory projects, which accelerates identification and remediation of access risks in SAP.

Grant Thornton is the latest in a growing group of external audit firms with which ERP Maestro has engaged in the last year. From boutique, industry-specific consultancies to a global Big 4, these companies have looked to ERP Maestro for the technology needed to meet the increased completeness and accuracy standards being enforced by the Public Company Accounting and Oversight Board (PCAOB) and other regulatory bodies.

Through the agreement, Grant Thornton utilizes Access Analyzer with clients to run a one-time segregation of duties (SoD) and sensitive access risk analysis. After the audit or advisory project concludes, the solution is then available to the client as an annual ERP Maestro subscription. This option enables continuous monitoring of SoD conflicts, sensitive access and the automation of controls around access to the SAP environment, thereby reducing the burden of remaining compliant.

“The usage of automated audit technology to detect risks is essential as SAP environments become more complex and vulnerable to breaches,” said Ben Harder, Managing Director, IT Assurance, Business Risk Services at Grant Thornton. “ Leveraging the ERP Maestro technology enables Grant Thornton to provide our clients with a higher level of accuracy in our findings and do it more quickly.”

Jody Paterson, Co-founder and CEO of ERP Maestro adds, “We are thrilled to be able to add Grant Thornton to our list of audit partners and add value to their audit, advisory and SAP-focused security assessment services. We share the vision of improving their clients’ security and risk environments, and are completely committed to helping them succeed in that endeavor.”


About ERP Maestro
Using the power of the cloud paired with in-house SAP® and audit expertise, ERP Maestro takes the complexity out of managing access risk and security in SAP environments with a software-as-a-service that provides risk-based, business-ready segregation of duties and sensitive access reporting, automated emergency access and secure provisioning. Expert hands-on guidance along the way empowers organizations to accelerate fraud prevention, audit preparation and governance, risk and compliance
(GRC) maturity. Learn more at www.erpmaestro.com.


About Grant Thornton LLP
Founded in Chicago in 1924, Grant Thornton LLP (Grant Thornton) is the U.S. member firm of Grant Thornton International Ltd, one of the world’s leading organizations of independent audit, tax and advisory firms. Grant Thornton, which has revenues in excess of $1.6 billion and operates 59 offices, works with a broad range of dynamic publicly and privately held companies, government agencies, financial institutions, and civic and religious organizations.

See more at: https://www.grantthornton.com/about- us


Read the official press release here: http://www.prweb.com/releases/prweb14174300.htm
ERPM and GT

ERP Maestro and SOXHUB Partner to Provide Fully Automated SAP User Access Reviews

Date_Icon
March 22, 2017

LAS VEGAS, NEVADA – March 22, 2017 – ERP Maestro, a leader in cloud-based automated access controls for SAP® and SOXHUB, the leading SOX software company used by Fortune 500 organizations, announced today at the SAPinsider GRC 2017 conference plans to cross-integrate functionality that will offer each company’s clients the ability to fully automate User Access Reviews and automate Sarbanes Oxley control testing for SAP.


User Access Reviews are pervasive controls that can be challenging for enterprise organizations to manage due to their largely manual nature. If they are not performed frequently enough, they can lead to material weaknesses found in corporate audits stemming from misstatement, fraud, misappropriation, or misuse of access. This is a common challenge faced by many organizations, requiring complex, often customized solutions to fix.


The partnership and integration between SOXHUB’s Workstream and ERP Maestro’s Access Analyzer will empower companies with game-changing, end-to-end control over user reviews. Tasks and processes related to User Access Reviews will be fully automated. For example, SOXHUB users will be able to see User Access Review listings, which will automatically populate into SOXHUB from ERP Maestro. Follow-up tasks will then automatically be created in SOXHUB’s workflow automation tool, and automatically assign preparers and reviewers their due dates.


Additional Benefits of this integration will include:

  • A Dashboard that funnels highlights up to the CFO/CTO on a day-to-day, real-time basis, showing the status of controls, including User Access Reviews, and who is responsible for the gaps.
  • Automatic Workflow and Notification Reminders. If the tasks are not completed by the due date, reviewers will automatically receive reminder notifications.
  • Desktop Procedures. All sign-off requirements for end users are included as well as accompanying desktop procedures and any questions or exceptions.
  • Full Visibility into the risk profiles of areas where the User Access Review is not being performed-by business entity, users, or departments.
  • Time Savings. SOXHUB and ERP Maestro’s integrated solution will eliminate the need for a Project Admin to administer the User Access Review process, leaving them to focus on more business-critical issues.

“SOXHUB is excited to team up with ERP Maestro to extend Workstream’s capabilities,” said Daniel Kim, VP of Product and Solutions at SOXHUB. “Our technologies are truly complementary, and we look forward to working together to improve GRC for our mutual customers.”

“ERP Maestro and SOXHUB both exist to make SOX and other similar regulatory compliance requirements easier for enterprises,” said Jody Paterson, CEO and Co-Founder of ERP Maestro. “This partnership fits right in with our objective to remove the barriers of complexity for managing access risk. Think of it as a powerful analysis and reporting engine now combined with a complete control documentation and workflow platform. We are excited for what’s ahead.”



About ERP Maestro
Using the power of the cloud paired with in-house SAP® and audit expertise, ERP Maestro takes the complexity out of managing access risk and security in SAP environments with a software-as-a-service that provides risk-based, business-ready segregation of duties and sensitive access reporting, automated emergency access and secure provisioning. Expert hands-on guidance along the way empowers organizations to accelerate fraud prevention, audit preparation and governance, risk and compliance (GRC) maturity. Learn more at www.erpmaestro.com.

About SOXHUB
SOXHUB was designed and purpose-built to make SOX and internal controls simple. Our product helps Internal Auditors work more efficiently by addressing their biggest pain points: spreadsheets volume, version control issues, and data redundancy, while empowering smarter collaboration between process owners to begin owning their controls. SOXHUB’s mission is to revolutionize how Internal Audit teams work while constantly striving to build the ideal experience for process owners. Every day, we help
companies by providing a solution that truly streamlines internal controls and SOX in a simple, effective way. Learn more at www.soxhub.com
.
 

Read the official press release here: http://www.prweb.com/releases/prweb14174308.htm
ERPM and Soxhub

ERP Maestro Access Analyzer Now Available in SAP App Center

Date_Icon
November 3, 2016

SAP Certified solution is the first on the SAP App Center to address segregation of duties and access controls

(PRWEB) NOVEMBER 03, 2016


ERP Maestro today announced that Access Analyzer, the only cloud-based software-as-a-service that automates controls for access in SAP, has been listed on the newly launched SAP App Center as an SAP Certified app.

The SAP App Center, launched in September 2016, offers customers a modern user experience to browse and discover innovative solution use cases and extensions for their existing SAP application landscapes, including S/4 HANA, SAP SuccessFactors, SAP Business One and SAP Hybris. SAP Certified apps like Access Analyzer are highlighted separately in the SAP App Center as solutions that are trusted by SAP to integrate with or enhance SAP business applications.

Automating access controls – specifically segregation of duties (SoD), sensitive access, emergency access and provisioning – is one of the more complex challenges facing SAP clients who must manage risk and security in their SAP ERP environments. Tougher audits and increased scrutiny by external auditors in demonstrating completeness and accuracy of the controls only add to the pressure to automate. Currently, ERP Maestro Access Analyzer is the only solution in the SAP App Center that addresses these challenges.

“Our organization decided to implement ERP Maestro after an exhaustive look for a solution to our on-going challenges around SoD and Privileged User Access,” wrote Jeffrey Davis, an Associate Director of Governance, Risk and Compliance via a review of Access Analyzer on the SAP App Center. “Due to our size and complexity, we were looking for a solution that was both flexible and scalable…we were able to implement the client within days and configure our custom ruleset shortly thereafter. Within the first year of using ERP Maestro, we were able to reduce the number of SOD conflicts by 40%, and provide to our business leaders a clear picture of our risk exposure.”

“We are excited to be included on the SAP App Center as a certified and trusted solution that visualizes access risk within hours, assists in remediation and redesign of security, and automates controls that ensure security risk is managed effectively,” said Jody Paterson, CEO and Co-Founder of ERP Maestro. “We look forward to extending our reach through this valuable platform and making it even easier for SAP clients of any size to improve access security.”

Access Analyzer is available on the SAP App Center via https://www.sapappcenter.com/p/20269/access-analyzer--erp-maestro-inc or directly at http://www.erpmaestro.com.



About ERP Maestro
 
Using the power of cloud paired with in-house SAP® and audit expertise, ERP Maestro takes the complexity out of managing access risk and security in SAP ERP environments. Its Access Analyzer solution is a cloud-based software-as-a-service that provides risk-based, business-ready SoD and sensitive access reporting and automates emergency access and secure provisioning while expert guidance along the way empowers organizations to accelerate fraud prevention, audit preparation and governance, risk and compliance (GRC) maturity. ERP Maestro was featured as a selected vendor in Gartner’s 2015 Market Guide for SOD Monitoring Tools and honored by analyst firm GRC 20/20 with both the 2014 GRC Innovation and Value Awards.



Read the official press release here.



Press Contact

Leslie Kesselring
Kesselring Communications
+1 503-358-1012
ERP Maestro SAP App Center

ERP Maestro Expands European Presence with Opening of UK Office

Date_Icon
June 21, 2016


Rising Demand for Automated Segregation of Duties (SoD) Monitoring Leads to Addition of Dedicated Director of Sales

VIENNA, AUSTRIA (PRWEB) JUNE 21, 2016


Today while exhibiting at the annual SAPinsider GRC 2016 Europe conference in Vienna, ERP Maestro announced the opening of its first European office based out of the United Kingdom. The announcement comes as the company sees a significant increase in demand for its service, having added a number of major European companies to its customer base over the last year.

As companies in Europe face additional scrutiny from EuroSOX regulation, external audit firms, and enforcement bodies such as the UK-based Serious Fraud Office (SFO), they are increasingly requiring automated tools and technologies to better control segregation of duties (SoD) across the business and access to critical business systems like SAP®. ERP Maestro helps these companies pass audits and achieve compliance quicker with out-of-the-box accurate, actionable reporting and automated preventative controls.

The office is located in downtown London and being led by Director of Sales Trudie Hing. Ms. Hing joins ERP Maestro with over 20 years of experience in software-as-a-service (SaaS), ERP systems, and Governance, Risk and Compliance (GRC).

“We are thrilled to take the next logical step of establishing a physical presence in a market that we have been serving for quite some time,” said Jody Paterson, CEO and Co-Founder of ERP Maestro. “With the addition of Trudie to the team, we look forward to further engagement and growth in helping companies running SAP in the UK and across Europe improve their access controls.”



About ERP Maestro
 
Founded on Big 4 auditing expertise, ERP Maestro helps companies running SAP get a full, actionable and accurate view of segregation of duties (SoD) and access risks in their environment – simplifying compliance, audits and security while requiring little to no staff time and resources. As the only cloud-based SaaS solution in its category, ERP Maestro has been recognized by Gartner as a representative vendor for SoD Monitoring Tools and honored by analyst firm GRC 20/20 with both the 2014 GRC Innovation and Value Awards. To learn more and inquire about a free trial visit http://www.erpmaestro.com.



To learn more, read the full press release here.



Press Contact

Leslie Kesselring
Kesselring Communications
+1 503-358-1012

Rising Demand for Automated Segregation of Duties (SoD) Monitoring Leads to Addition of Dedicated Director of Sales

Rising Demand for Automated Segregation of Duties (SoD) Monitoring Leads to Addition of Dedicated Director of Sales

London, UK

ERP Maestro Closes Q1 2016 with Record Growth of 491% Delivering on Demand for Segregation of Duties and Access Management in SAP

Date_Icon
May 31, 2016

Surge Led by Increased Adoption of Enterprise Plan Subscriptions to Combat Security Breaches and Fraud in SAP Business Applications.


WESTON, FL (PRWEB) MAY 31, 2016


ERP Maestro today announced continued triple-digit growth of 491% in revenue during the first quarter of 2016 compared to the same quarter in 2015. The exponential year-over-year growth in Q1 2016 resulted in the strongest revenue quarter ever and the highest achieved Average Sales Price (ASP) quarter to date for ERP Maestro, demonstrating a growing demand for solutions that automate the management of internal controls related to access and authorizations in SAP® business applications.

The company’s record achievement was led by an increased adoption of ERP Maestro Enterprise Plan subscriptions, which as of Q1 2016 make up 67% of sales – up from 12% a year ago. The Enterprise Plan subscription is the company’s flagship offering which includes full, end-to-end access control automation for SAP. The additional capabilities offered in the Enterprise Plan go beyond detection of segregation of duties (SoD) access conflicts and best-in-class audit-ready reporting to preventative controls like Emergency Access and Secure & Compliant Provisioning, which help to reduce or mitigate risks of a security breach or fraud.

PeroxyChem, a leading global chemicals manufacturer and supplier, found value in the full access control capabilities of Access Analyzer. The Enterprise Plan subscription was selected with the intention of first focusing on existing access risks, and then implementing preventative controls once those risks have been identified and addressed. After a rigorous initial use of the tool over a four-month period, “we were able to fix almost 97% of the segregation of duties conflicts we had in SAP,” said Madhu Budati, Manager of SAP Applications at PeroxyChem.

According to a recent study by KPMG, “Global Profiles of the Fraudster,” weak internal controls were found to be an enabler to no less than three quarters of 750 fraudsters examined. In addition, the study found that companies are not effectively using technology to combat fraud, with only 3 percent of them employing data analytics or tools that can sift through millions of transactions to find suspicious items.

“We continue to be excited with the growth we are seeing, and are even more excited that clients are seeing the value in our solution as shown by our 100% retention rate,” said Jody Paterson, CEO and Co-Founder of ERP Maestro. “Companies are more educated than ever before about their options for automating access controls, and we look forward to continuing to provide that full range of capabilities and industry-leading reporting in a way that reduces the time, cost and resource burden on their teams.”



About ERP Maestro
 
ERP Maestro Access Analyzer takes the complexity out of monitoring segregation of duty (SoD) compliance, sensitive access, emergency access and compliant provisioning in SAP®. As the only truly cloud-based SaaS solution in its category, ERP Maestro can be up and running in as little as 30 minutes, providing best-in-class, business-ready and actionable reporting that empowers organizations to prevent fraud, pass corporate access audits and meet regulatory and legislative compliance with ease. ERP Maestro has been recognized by Gartner as a representative vendor for SoD Monitoring Tools and honored by analyst firm GRC 20/20 with both the 2014 GRC Innovation and Value Awards. To learn more and inquire about a free trial, visit http://www.erpmaestro.com.



To learn more, read the full press release here.



Press Contact

Leslie Kesselring
Kesselring Communications
+1 503-358-1012
ERP Maestro

ERP Maestro Agent Service Achieves Certified Integration with SAP® ERP

Date_Icon
January 28, 2016

Certified Solution Connects Cloud-Based SaaS Solution to SAP ERP for Easy, Efficient Automation of Access Controls

LAS VEGAS, NV (PRWEB) JANUARY 28, 2016


ERP Maestro today announced that its Agent Service 1.15 connector has achieved certified integration with the SAP® ERP application, version 6.0. Agent Service 1.15 connects ERP Maestro’s cloud-based access control solution, Access Analyzer, to SAP ERP. In addition, ERP Maestro has joined the SAP PartnerEdge® program as an SAP silver partner. The announcement comes as ERP Maestro attends the annual SAP Field Kick-Off Meeting (SAP FKOM) in Las Vegas as a sponsoring partner.

The SAP Integration and Certification Center has certified that ERP Maestro Agent Service 1.15 natively integrates with SAP ERP to exchange critical data with instances of SAP Business Suite software. This integration enables ERP Maestro customers using SAP Business Suite to automate access controls including segregation of duty (SoD) analysis and compliance, sensitive access monitoring and emergency access management.

“With this official certification, our customers can be confident that our solution’s integration is trusted by SAP and follows best practices,” said Jody Paterson, co-founder and CEO of ERP Maestro. “This new technology empowers more businesses to embrace the automation of their access controls in an agile and efficient way. It all adds up to less cost, less time to value and increased compliance.”

Through the SAP PartnerEdge program, partners work closely with SAP to develop and certify the technical integration of their solutions with SAP software. Integrated partner applications extend, complement and add value to SAP solutions, thereby helping mutual customers more successfully meet business needs and drive strong results.

About ERP Maestro 
With no up-front cost and a setup of about 30 minutes, ERP Maestro automatically monitors segregation of duty (SoD) compliance, sensitive access, emergency access and compliant provisioning – allowing organizations to prevent fraud, pass corporate access audits and comply with regulatory and legislative requirements. Risk management is real-time and continuous, and audit-ready reporting is available out of the box. ERP Maestro has been recognized by Gartner as a representative vendor for SoD Monitoring Tools and honored by analyst firm GRC 20/20 with both the 2014 GRC Innovation and Value Awards. To learn more visit http://www.erpmaestro.com.

Access Analyzer is a trademark of ERP Maestro. 
SAP, PartnerEdge and other SAP products and services mentioned herein as well as their respective logos are trademarks or registered trademarks of SAP SE (or an SAP affiliate company) in Germany and other countries. See http://www.sap.com/corporate-en/legal/copyright/index.epx for additional trademark information and notices. 
All other product and service names mentioned are the trademarks of their respective companies.



To learn more about ERP Maestro's growth, read the full press release here.



Press Contact

Leslie Kesselring
Kesselring Communications
+1 503-358-1012
SAP

ERP Maestro Demonstrates Over 800% Annual Recurring Revenue Growth

Date_Icon
November 12, 2015

Growth fuels adoption of automated access controls for businesses running SAP® worldwide.


WESTON, FL (PRWEB) NOVEMBER 12, 2015


ERP Maestro today announced significant company growth of over 580% in subscriptions and 845% in annual recurring revenues over the last 4 quarters. The company’s cloud-based Access Analyzer solution and software-as-a-service (SaaS) subscription model have been received favorably in the marketplace as organizations of all sizes increasingly adopt this simpler, more efficient and cost-effective way to begin automating segregation of duties (SoD) analysis, emergency access management and compliant provisioning in SAP environments.

The company has met the increased market demand with ongoing investment in expanding the sales force in the U.S. and continued acceleration of a global partner network. Its international roster of partners now spans 15 countries and four continents, ranging from boutique SAP and Governance, Risk and Compliance (GRC) consulting firms to leading technology integrators and major accounting firms.

“As we approach our 100th customer, we are thrilled to see the market response to Access Analyzer and our subscription plans,” said Keith Altman, Senior VP of Worldwide Sales at ERP Maestro. “Managing segregation of duties and access controls is a real challenge companies of all sizes all over the world are facing, and ERP Maestro is empowering them to address this challenge, pass corporate audits and get compliant.”

The growth in client base has not only been international but diverse, reaching into several industries from manufacturing to energy and insurance to retail. “The fact that ERP Maestro has multiple clients audited by the Big 4 gave us comfort that their rulebook is following best practices,” said a Manager of SG&A at a major label manufacturer. “After the very fast setup, we realized the full scope of the risk at hand. It then helped us quickly address the issues in a well thought out, prioritized and methodical way.”

Gartner estimates that by 2019, 50% of organizations with complex business applications requiring SoD risk analysis will adopt products or services offering SoD controls monitoring capabilities, up from 30% today, according to its April 28, 2015 “Market Guide for SOD Controls Monitoring Tools” by Anmol Singh and Brian Iverson(i). This year especially organizations are finding it more difficult to pass audits due to regulatory demands and higher expectations from external auditors, which is helping to drive this momentum.

“I am extremely proud of the extraordinary results the team has been able to achieve in the last year, and this is just the beginning,” said Jody Paterson, CEO and Co-Founder of ERP Maestro. “I am looking forward to continuing the momentum in 2016 with additional investments in our platform, expanding our global footprint, and above all ensuring our customers’ success with ERP Maestro.”


Gartner Disclaimer 


Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

(i)Market Guide for SOD Controls Monitoring Tools; 28 April 2015; Anmol Singh, Brian Iverson


About ERP Maestro 

ERP Maestro is the only cloud-based solution that automates access controls in SAP®. With no upfront cost and a 30-minute setup, ERP Maestro automatically monitors segregation of duty (SoD) compliance, sensitive access, emergency access and compliant provisioning – allowing organizations to prevent fraud, pass corporate access audits and comply with regulatory and legislative requirements. Risk management is real-time and continuous, and audit-ready reporting is available out of the box. ERP Maestro has been recognized by Gartner as a representative vendor for SoD Monitoring Tools and honored by analyst firm GRC 20/20 with both the 2014 GRC Innovation and Value Awards. To learn more visit 
http://www.erpmaestro.com.


To learn more about ERP Maestro's growth, read the full press release here.



Press Contact

Leslie Kesselring
Kesselring Communications
+1 503-358-1012
ERP Maestro

ERP Maestro Announces New Mobile-Friendly and Enhanced Security Features in Access Analyzer

Date_Icon
October 26, 2015

Organizations running SAP can ease SOD compliance management with new tools to determine access to critical and sensitive information.


WESTON, FL (PRWEB) OCTOBER 26, 2015

ERP Maestro today announced new enhancements in security, mobility and user experience to its cloud-based Access Analyzer platform. With the new release, audit, SAP and security teams can now automate the management of access controls, including Segregation of Duties (SoD), on the go via their mobile devices. Further, application security enhancements ensure that data such as sensitive transactions, access and certifications remain protected.

The new version of Access Analyzer provides a whole new user experience with a completely new look and feel that makes it easier to perform critical tasks such as scheduling analyses of SAP and rulebook management. The comprehensive release covers four major areas: 

  • Improved Security. Integration with Microsoft Azure Active Directory (Azure AD), a leading standard for cloud based directory and identity management.
  • User Interface/Experience. Cleaner design, easier navigation/access, and HTML5 compatibility with any browser.
  • Mobility. Responsive interface works well on smartphones and tablets to enable scheduling of analyses and approval of Emergency Access and Compliant Provisioning requests on the go.
  • Rulebook Management. Custom rulebooks may now be imported from other systems including SAP® GRC Access Controls, and companies may get more detailed with business function parameters.

“This release signifies a big step in our evolution and growth as a significant player in the ERP security space, and directly reflects the feedback we’ve received from our amazing customers,” said Jody Paterson, co-founder and CEO of ERP Maestro. “As the need and urgency for access monitoring increases, so does the need to support our users’ mobile workstyles securely and the new Access Analyzer is at the forefront of this movement.”


About ERP Maestro
 
ERP Maestro is the only cloud-based solution that automates access controls in SAP®. With no upfront cost and a 30-minute setup, ERP Maestro automatically monitors segregation of duty (SoD) compliance, sensitive access, emergency access and secure provisioning – allowing organizations to prevent fraud, pass corporate access audits and comply with regulatory and legislative requirements. Risk management is real-time and continuous, and audit-ready reporting is available out of the box. ERP Maestro has been recognized by Gartner as a representative vendor for SoD Monitoring Tools and honored by analyst firm GRC 20/20 with both the 2014 GRC Innovation and Value Awards. To learn more visit 
http://www.erpmaestro.com.


To learn more about the new version of Access Analyzer, read the full press release here.


Press Contact
Leslie Kesselring
Kesselring Communications
+1 503-358-1012
Access Analyzer on mobile devices

ERP Maestro Announces Pre-Audit SoD Scan to SAP Clients Facing Higher Compliance Standards this Year

Date_Icon
October 7, 2015

PASS Program Helps Companies Prepare for Increased External Auditor and PCAOB Scrutiny and Reduce Internal Controls Conflicts by 80%.


WESTON, FL (PRWEB) OCTOBER 07, 2015


ERP Maestro announced today the introduction of a new free, no-commitment offering, the Pre-Audit SoD Scan (PASS), for companies of any size running SAP® ERP software. The announcement comes as organizations begin to find it more difficult to pass audits due to higher expectations from external auditors in the wake of updates to the COSO framework.

PASS helps SAP clients understand what external auditors will see when they run their analysis of the clients’ access controls, and give them the intelligence needed to proactively prepare for and pass upcoming audits. In a 30-minute session using a simple automated tool, the organization gets a complete analysis of their SAP access controls including a full user analysis, role analysis, and detailed conflict reports that expose all risks – down to the specific users executing on those risks.

End of year audit cycles are creating urgency within enterprises of all sizes looking to meet demanding requirements while balancing the rising costs of audits. The COSO 2013 update of the widely adopted internal controls framework, which will directly influence audit programs beginning this year, ushers in stronger requirements for completeness and accuracy that can only be accomplished by automated solutions.

As a result, the Public Company Accounting Oversight Board (PCAOB) is increasingly scrutinizing external audit firms that are not thoroughly examining completeness and accuracy of internal controls in organizations, including Segregation of Duties (SoDs). The 2014 results of the PCAOB’s inspections of audits showed an average audit failure rate of more than 39 percent of inspected audits.i

“The impact to organizations is, in short, tougher audits,” said the Director of GRC Technology at a Big Four firm during a recent joint webinar with ERP Maestro. “A higher level of control, more automation within processes and the use of technology to manage those controls is now the expectation; basically the bar has been set higher. Clients now need an automated solution or more transparency around the way controls are handled. So now we’re putting that pressure onto the client companies we’re auditing to ensure they have that completeness and accuracy.”


Increased Standards and Rising Audit Costs 

Increased standards could mean increased costs and hours if organizations are not properly prepared. A recent study commissioned by global consulting firm Protiviti found that 58 percent of companies said their external audit fees increased in fiscal 2014, reflecting, in part, the PCAOB’s inspection reports of external auditors and the adoption of COSO 2013 to guide documentation efforts.ii

According to an evaluation by independent analyst firm GRC 20/20, one Fortune 500 organization saved over $120,000 a year in manual and external audit costs and reduced auditing time from over 700 hours down to less than one by using ERP Maestro. “To date, we’ve been able to reduce our critical Segregation of Duties (SoD) conflicts by over 80% and our high SoD conflicts by over 60%,” said a Sr. Manager, Internal Controls & Policies at the Fortune 500 organization. “We’ve also been able to formally document our mitigating controls within the tool, which is being relied upon by our external auditors.”

Gartner estimates that only 30 percent of companies with complex business applications requiring enforcement of segregation of duty (SOD) controls make use of automated SOD controls monitoring solutions, according to its April 28, 2015 “Market Guide for SOD Controls Monitoring Tools” by Anmol Singh and Brian Iverson.iii Gartner recommends that “Compliance and IAM leaders should consider automated solutions for improving control over SoD risks for key business systems.”

“ERP Maestro wants to help companies running SAP be better prepared this audit season and we believe the Pre-Audit SoD Scan is the perfect tool to accomplish this,” said Jody Paterson, Co-Founder and CEO, ERP Maestro. “At a time when enterprise-level security threats are becoming a new normal, and fraud is at an all-time high, the PASS is a no-risk way to get ahead of any potential issues and avoid the significant costs that come with a failed audit.”

The ERP Maestro Pre-Audit SoD Scan is available to any organization running SAP ERP. There is no obligation to commit to a subscription with ERP Maestro. If the client is interested in continued access and generating new analyses, they may sign up for a free 14-day trial to evaluate the full access controls platform. To request a 30-minute PASS session visit 
go.erpmaestro.com/PASS.

Click here to view the full press release.


Gartner Disclaimer 

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

http://daily.financialexecutives.org/in-the-crosshairs-what-the-pcaobs-inspection-results-mean-for-your-company/
ii http://ww2.cfo.com/auditing/2015/05/sox-compliance-getting-costly/ 
iii Market Guide for SOD Controls Monitoring Tools; 28 April 2015; Anmol Singh, Brian Iverson


About ERP Maestro 

ERP Maestro is the only cloud-based solution that automates access controls in SAP®. With no upfront cost and a 30-minute setup, ERP Maestro automatically monitors segregation of duty (SoD) compliance, sensitive access, emergency access and secure provisioning – allowing organizations to prevent fraud, pass corporate access audits and comply with regulatory and legislative requirements. Risk management is real-time and continuous, and audit-ready reporting is available out of the box. ERP Maestro has been recognized by Gartner as a representative vendor for SoD Monitoring Tools and honored by analyst firm GRC 20/20 with both the 2014 GRC Innovation and Value Awards. To learn more visit 
http://www.erpmaestro.com.



Press Contact
Leslie Kesselring
Kesselring Communications
+1 503-358-1012
P.A.S.S.

Jody Paterson, CEO of ERP Maestro, featured in SAPinsider

Date_Icon
October 1, 2015

Increased External Audit Scrutiny Puts Spotlight on Access Controls


By Jody Paterson | SAPinsider, Volume 16, Issue 4

October 1, 2015


Controlling access to your business environment is fundamental to the security and regulatory compliance of your organization, and maintaining the necessary levels of control requires frequent reviews of who is accessing what in your systems. While external auditors have always discouraged manual approaches to managing access control reviews, 70% of companies manually monitor access controls in their ERP system, including segregation of duties (SoD), emergency access, and provisioning.1

Why do so many organizations choose a manual approach over using an automated solution despite the advantages of automation, such as accuracy, completeness, and continuous auditing? It is not due to a lack of awareness of the value automated tools bring, but rather the perceived high cost and complex implementation project that is involved.

While organizations have been able to get by using ad hoc field tools to manually spot-analyze their environments, external auditors are changing how they evaluate access controls. This means that organizations can no longer continue to manage controls this way and still remain compliant going forward.

Click here to access the full article. 


SAPinsider

Baker Tilly Teams With ERP Maestro

Date_Icon
September 16, 2015

Relationship brings clients new levels of automation, control oversight and visibility to segregation of duties (SoD) program management



MILWAUKEE, Wis. (September 16, 2015)


Baker Tilly Virchow Krause, LLP (Baker Tilly) announced a new solution to serve a growing number of organizations seeking to address challenges in maintaining segregation of duties in increasingly complex environments. The solution, developed by ERP Maestro, helps clients running SAP to automate access controls and conduct SoD monitoring quickly and affordably.

To learn more about ERP Maestro’s partnership with Baker Tilly, read the full press release here.

Baker Tilly

Davatec Consulting Partners with ERP Maestro to Offer Cloud-Based Access Controls Solution to SAP Clients

Date_Icon
September 9, 2015

Free Trial Offer to Help Governance, Risk and Compliance Leaders Improve Review Processes this Audit Season


WESTON, FL (PRWEB) SEPTEMBER 09, 2015

Davatec Consulting, a SAP Security and GRC consultancy, today announced that it has partnered with ERP Maestro®. This partnership will help clients running SAP® to automate their access controls and segregation of duties monitoring program quickly and affordably by offering a free trial of the software-as-a-service to qualified companies.

Business processes and technology change at a rapid pace. In the context of change, internal controls over financial reporting, regulatory requirements, internal and external auditors, and fraud risk put increased pressure on corporations to ensure Enterprise Resource Planning (ERP) systems are secure and access control risks are managed in the context of a dynamic business environment.

ERP Maestro is a quick and simple cloud-based solution that automates Segregation of Duties (SoD), Sensitive Access, Emergency Access and Secure Provisioning in SAP. Because it is a SaaS solution, deployment is a matter of 30 minutes and flexible subscription pricing makes it easy to fit into any budget.

“With the increased scrutiny auditors are placing on Segregation of Duties (SoD), inherited rights, critical and super user access in SAP, ERP Maestro provides the right technology at the right time to organizations needing to comply with these heightened requirements and manage risk,” said Jon Davatz, Senior SAP Security Consultant at Davatec Consulting. “As a consultancy whose core function is SAP Security and GRC, we found ERP Maestro to be a perfect complement to our services, and a solution that will help us solve our clients’ problems more effectively – which is always our primary concern.”

The ERP Maestro solution monitors all transactions in SAP for conflicts down to the authorization level and features a selection of audit-ready reports out of the box. Business stakeholders can easily examine the organization’s potential risks related to access by user, role or transaction and then leverage this information to tactfully authorize to remove unutilized functionality or directly assign any available mitigating controls.

With the free trial offer from Davatec Consulting, users will receive 14 days of unlimited access to the platform with no obligation, enabling them to quickly analyze and test their SoD environment in SAP and run out-of-the-box reports that will help streamline audit review cycles.

“As fraud increases and the cost of security audits rise for SAP and other ERP environments, we see the growing importance for organizations focused on SOD risk analysis to automate their SOD controls monitoring process,” said Jody Paterson, CEO, ERP Maestro. “Davatec Consulting is a valuable partner in helping us accomplish our mission of helping SAP-centric organizations eliminate hundreds of man-hours involved in the compliance reporting process and improve risk posture at one of the most attractive price points in the industry.”

To learn more about Davatec and ERP Maestro’s partnership, including how to sign up for a free trial, visit http://go.erpmaestro.com/davatec.


About Davatec Consulting 

Davatec Consulting is a SAP Security and GRC consultancy that offers SAP Security consulting services to organizations, including new implementations, role re-design, SAP security architecture design/analysis, and security design for third party solutions to ensure the application is compatible and integrated into the SAP standard security concept.


About ERP Maestro 

ERP Maestro is a cloud-based solution that automates access controls in SAP®. With no upfront cost and a 30-minute setup, ERP Maestro automatically monitors segregation of duty (SoD) compliance, sensitive access, emergency access and secure provisioning – allowing organizations to prevent fraud, pass corporate access audits and comply with regulatory and legislative requirements. Risk management is real-time and continuous, and audit-ready reporting is available out of the box. ERP Maestro has been recognized by Gartner as a representative vendor for SoD Monitoring Tools and honored by analyst firm GRC 20/20 with both the 2014 GRC Innovation and Value Awards.


Press Contact
Leslie Kesselring
Kesselring Communications
+1 503-358-1012
Davatec Consulting

Meta-Byte Partners with ERP Maestro for Access Controls Automation in SAP

Date_Icon
July 26, 2015

Compliance and IAM leaders Urged to Consider Automated Solutions for Improving Control over SOD Risks for SAP and Other Key Business Systems


DUBAI, UAE - July 26, 2015

Today Meta-Byte Technologies announced that it has partnered with ERP Maestro® to help clients running SAP® automate access controls and segregation of duties monitoring quickly and affordably.

Business processes and technology change at a rapid pace. In the context of change, internal controls over financial reporting, regulatory requirements, internal and external auditors, and fraud risk put increased pressure on corporations to ensure ERP systems are secure and access control risks are managed in the context of a dynamic business environment.

ERP Maestro is a quick and simple cloud-based solution that automates Segregation of Duties, Sensitive Access, Emergency Access and Secure Provisioning in SAP. Because it is a SaaS solution, deployment is a matter of 30 minutes and flexible subscription pricing makes it easy to fit into any budget.

"With the increased scrutiny auditors are placing on Segregation of Duties (SoD), inherited rights, critical and super user access, changes to roles are too much for today's organization to manage adequately in manual processes," said Salil Dighe, Founder and CEO of Meta-Byte Technologies. "We are proud to now work with an emerging leader like ERP Maestro to solve this challenge for our clients running SAP."

The solution monitors all transactions in SAP for conflicts down to the authorization level and features a selection of audit-ready reports out of the box. Business stakeholders can easily examine the organization's potential risks related to access by user, role or transaction and then leverage this information to tactfully authorize to remove unutilized functionality or directly assign any available mitigating controls.

"As fraud increases and the cost of security audits rise for SAP and other ERP environments, we see the growing importance for organizations focused on SOD risk analysis to automate their SOD controls monitoring process," said Jody Paterson, CEO, ERP Maestro. "ERP Maestro is proud to work with Meta-Byte and their clients in the Middle East to accomplish our mission of helping SAP-centric organizations eliminate hundreds of man-hours involved in the compliance reporting process and improve risk posture at one of the most attractive price points in the industry."

About Meta-Byte Technologies

Meta Byte Technologies is a Dubai-based leading execution-oriented management and technology consulting firm in the Middle East. Meta Byte's approach combines project and program leadership with deep domain expertise supported by technical, engineering and analytic excellence. Through its diverse capabilities, the company assist its customers improve their enterprise performance, enhance customer experiences and achieve innovative solutions.

Meta Byte is prevailed to have worked with the leading names in the industry and have successfully worked in niche technology areas to implement world class projects in Middle East region.

For further details visit www.meta-byte.com

About ERP Maestro 

ERP Maestro is a cloud-based solution that automates access controls in SAP®. With no upfront cost and a 30-minute setup, ERP Maestro automatically monitors segregation of duty (SoD) compliance, sensitive access, emergency access and secure provisioning - allowing organizations to prevent fraud, pass corporate access audits and comply with regulatory and legislative requirements. Risk management is real-time and continuous, and audit-ready reporting is available out of the box. ERP Maestro has been recognized by Gartner as a representative vendor for SoD Monitoring Tools and honored by analyst firm GRC 20/20 with both the 2014 GRC Innovation and Value Awards.

To learn more, including how to sign up for a free trial, visit www.erpmaestro.com/introvideo.


Press Contact:

Hazem Abed
Vistar Communications
Dubai, UAE
Email: hazem@vistarmea.com
Meta-Byte Technologies

ERP Maestro Receives 2014 GRC Value Award for GRC Solution Provider in Identity and Access Management Category

Date_Icon
November 6, 2014

ERP Maestro and global security and asset protection organization featured in GRC 20/20 webinar on achieving efficient SAP access management

Weston, FL (PRWEB) November 06, 2014

ERP Maestro® announced today that it has been honored with a 2014 GRC Value Award in the Identity and Access Management category by GRC analyst firm GRC 20/20. The second annual GRC Value Awards recognize real-world implementations for Governance, Risk Management and Compliance programs and processes that have returned significant and measurable value to an organization. GRC 20/20 has recognized ERP Maestro for the automation of Segregation of Duties (SoD) and its SAP® access controls audit program at a global security and asset protection organization based in Florida.

GRC 20/20 will feature the case study in a webinar titled “How a Fortune 500 Security Company Reduced Access Control Auditing from Over 700 Hours to Less than One” on Tuesday, November 18, 2014 at 2:00pm EST.

This recognition comes on the heels of the launch of ERP Maestro’s online subscription-based SoD Auditing-as-a-Service solution, which addresses the rise in fraud and the high costs of security audits, eliminating hundreds of man-hours involved in the compliance reporting process for a typical corporation.

The global security and asset protection organization completed what used to take 732 hours in just one hour and gained immediate as well as ongoing annual savings of $74,000 by replacing their manual efforts, which were costing approximately $121,200 per year.

“ERP Maestro has demonstrated proven business value in Identity and Access Management with its program for a Fortune 500 global security and asset protection organization. This organization found a solution in ERP Maestro that was not only cost effective, but also enabled them to achieve their goals of efficiency, effectiveness, and agility,” said Michael Rasmussen, Chief GRC Pundit for GRC 20/20 and internationally recognized expert. “It is imperative that we recognize today’s successes as a milestone toward advancing GRC maturity.”

Business processes and technology change at a rapid pace. In the context of change, internal controls over financial reporting, regulatory requirements (e.g., SOX), internal and external auditors, and fraud risk put increased pressure on corporations to ensure ERP systems are secure and access control risks are managed in the context of a dynamic business environment. Segregation of Duties (SoD), inherited rights, critical and super user access, and changes to roles are too much for today’s organization to manage adequately in manual processes.

This Global Security and Asset Protection Organization used to manually manage their access control testing in their SAP environments. GRC 20/20 has evaluated and verified the use of ERP Maestro at this organization and confirms that this subscription service has achieved measurable value.

Other results recognized by this global security and asset protection organization include: 

  •     First year savings is believed to be in the area of $50,000 for hardware and maintenance alone
  •     Immediate and direct savings of 61% on top of what they were already spending
  •     Lower cost of ownership compared to alternate solutions - a savings of $400,000 per SAP instance in software licensing and consulting services
  •     Savings in external audit of $50,000 a year

 

“We applaud our client for their visionary program and GRC 20/20 for recognizing and quantifying the business value,” said Jody Paterson, CEO, ERP Maestro. “In achieving automation, this global security and asset protection organization not only gained cost savings but they also avoided a significant security event, such as fraudulent activity related to segregation of duties, and freed up staff resources who are now able to focus on other priorities.”

To read the GRC 20/20 blog acknowledging award recipients: http://grc2020.com/2014/10/26/grc-20-20-announces-2014-grc-value-award-recipients/

To register for the GRC 20/20 webinar: https://attendee.gotowebinar.com/register/1475038091799380225

To download the GRC 20/20 case study: http://erpmaestro.com/security-case-study-download

About GRC 20/20 
GRC 20/20 is the authority in understanding how organizations implement GRC practices that are effective, efficient and agile. Through independent research and industry interaction, GRC 20/20 advises the entire ecosystem of GRC roles within organizations, technology and knowledge solution providers, and professional service firms. Organizations engage GRC 20/20 when they need insight, guidance and advice in dealing with a dizzying array of disruptive issues, challenges, processes, information and technologies while trying to maintain control of a distributed and dynamic business environment. Visit GRC 20/20 at http://www.grc2020.com/ and follow on Twitter at @GRCPundit.

About ERP Maestro 
ERP Maestro is an online software-as-a-service (SaaS) that makes life easier for enterprise IT governance, risk and compliance professionals tasked with preventing fraud, passing corporate audits and complying with legislative requirements including Sarbanes-Oxley (SOX). With no upfront cost or IT implementation, ERP Maestro automates SAP® Access Controls including segregation of duty (SoD) compliance, sensitive access monitoring, emergency access management and secure provisioning. Risk management is real-time and continuous, and auditing reports are ready in minutes. ERP Maestro has been honored with a 2014 GRC Technology Innovation Award by independent analyst firm GRC 20/20 recognizing technologies revolutionizing the GRC market. For additional information visit http://www.erpmaestro.com or follow us on Twitter @ERPMaestro.

GRC Value Award 2014

ERP Maestro Announces First Segregation of Duties (SoD) Auditing-as-a-Service to Simplify SOX Compliance and Reduce Fraud

Date_Icon
October 30, 2014

Online subscription service from ERP Maestro slashes SAP SoD auditing time from 500+ man-hours to just one hour and costs 70% less than on-premise software.

Weston, FL (PRWEB) October 30, 2014

Addressing the rise in fraud and the high costs of security audits, ERP Maestro® announced today an online subscription-based Segregation of Duties (SoD) auditing service that eliminates the hundreds of man-hours involved in the compliance reporting process for a typical corporation using SAP®, while dramatically reducing fraud abuse. ERP Maestro also announced the availability of a free trial that analyzes an organization’s entire user base.

Accounting fraud at U.S. organizations in 2014 more than doubled from 2011 levels and, increasingly, the reported scandals are related to lack of SoD and user access controls in Enterprise Resource Planning (ERP) systems such as SAP. A software firm, a state hospital and even a major grocer have seen the effects of such incidents recently including SEC charges, SOX “clawback” provisions for executives and billions wiped from the company’s stock market value.

ERP Maestro’s SoD Auditing-as-a-Service transforms SoD auditing for SAP, enabling internal audit managers, security officers and systems analysts to: 
    Produce fully defendable SoD reports in minutes, not hundreds of hours
    Gain continuous fraud protection with 24/7 monitoring
    Spend 70% less than traditional on-premise SoD software
    Stop and start the monthly subscription service at any time

“Zero to 60” 
According to an independent survey by OCEG of 441 audit, security, risk and compliance managers, a typical corporation spends 500 man-hours each year performing SoD and sensitive access audits. Most significantly, the survey reveals that only 17% of organizations are monitoring for SoD-related fraud on a continuous basis (OCEG One-Minute Poll, Access Control, 9/14, http://www.oceg.org).
“It is impossible to perform SoD audits manually with any accuracy, let alone continuously monitor for access conflicts that can lead to fraud activity,” said the senior business systems analyst for a leading manufacturer of power transmission and water management products. “With ERP Maestro we were able to go from ‘zero to 60’ in hours rather than months and with drastically lower initial capital outlay.”
Upon signing up for a subscription plan with ERP Maestro, a client can jump-start their journey to automating SoD auditing in under an hour with no upfront commitment and no IT implementation. Not only does this approach accelerate time to remediation and compliance, but it also opens the door to continuous monitoring as part of a broader enterprise GRC program.

The Need for Automation 
Seventy-seven percent of companies still conduct their SoD audits manually, according to the OCEG survey. Industry analysts have long argued for the benefits of automation. This manual process of using spreadsheets and email is highly inefficient and not scalable, slowing down the business, introducing human errors and greater exposure to risk and non-compliance. Meanwhile, industry adoption of automation is impeded by the high cost of commercially supported software, which can be as high as $400,000 for the first year and take four to six months of consulting resources and time to implement.

“ERP Maestro’s SoD Auditing-as-a-Service is a fresh and simple approach that will accelerate the market shift toward automation,” said Michael Rasmussen, Chief GRC Pundit at analyst firm GRC 20/20. “The value could be tremendous for organizations: in terms of efficiencies with dollar and time savings from months to minutes and reduction in external audit fees by consultants; in terms of effectiveness such as more audits getting done, reduction in issues and faster intelligence to the business; and in terms of agility to report on-demand and adapt to changing business environment and employees changing roles.”

“The cost of doing nothing is too high. We are looking to address these fundamental
barriers with a game changing approach, just as cloud models such as salesforce.com or basecamp.com have done for their respective markets,” stated Jody Paterson, Founder and CEO of ERP Maestro.

Free Trial Availability 
ERP Maestro subscriptions are available immediately for organizations with as little as 100 up to an unlimited number of SAP® users. A free, 7-day trial as well as details on plans and pricing are available at http://www.erpmaestro.com.

About ERP Maestro 
ERP Maestro is an online software-as-a-service (SaaS) that makes life easier for enterprise IT governance, risk and compliance professionals tasked with preventing fraud, passing corporate audits and complying with legislative requirements including Sarbanes-Oxley (SOX). With no upfront cost or IT implementation, ERP Maestro automates SAP® Access Controls including segregation of duty (SoD) compliance, sensitive access monitoring, emergency access management and secure provisioning. Risk management is real-time and continuous, and auditing reports are ready in minutes. ERP Maestro has been honored with a 2014 GRC Technology Innovation Award by independent analyst firm GRC 20/20 recognizing technologies revolutionizing the GRC market. For additional information visit http://www.erpmaestro.com or follow us on Twitter @ERPMaestro.
ERP Maestro

ERP Maestro Presents at the 2014 Gartner Security & Risk Management Summit

Date_Icon
June 24, 2014

ERP Maestro Founder and Chief Strategy Officer, Jody Paterson, recently spoke at the Gartner Security & Risk Management Summit on the topic of Best Practices to Reduce SAP Access Control Risk.  Thousands of attendees traveled to National Harbor, MD to find the balance between enabling your organization to move forward against its objectives while also protecting it, your customers and employees, so you can have faster business process and improved ROI.

Gartner Security & Risk Summit - Best Practices for SAP Access Control Risk - Jody Paterson, CISA - 06/24/14

To view the Gartner Events on Demand Usage Guidelines please visit www.gartnerondemand.com and go to Usage Guidelines at the bottom of the page.

Video Summary: The journey to a mature and effective SAP Access Control environment is challenging and filled with complexity. Many have to navigate and orchestrate the tools, people and processes that must work together to achieve the goal of reducing risk with an acceptable level of overhead. This session outlined the need for automation, some best practices and real world lessons for achieving automated access controls in an SAP environment.

Gartner Security Summit 2014

ERP Maestro Award-Winning Cloud-Based Segregation of Duty Solution Offers “SAP Health Checks” at SAPinsider GRC 2014 Conference

Date_Icon
March 12, 2014
http://www.prweb.com/releases/2014/03/prweb11663326.htm

Weston, FL (PRWEB) March 12, 2014

ERP Maestro, Inc., the only subscription-based cloud service provider of Segregation of Duty (SoD) and Access Control solutions for SAP™ users, today announced the results of a customer study revealing 78-85% cost savings compared to traditional software alternatives – effectively making SoD adoption a reality for enterprises of all sizes. The company also announced that its flagship platform Access Analyzer (TM) has been honored with a 2014 GRC Technology Innovation Award by independent analyst firm GRC 20/20 recognizing technologies revolutionizing the Governance, Risk Management and Compliance (GRC) market.

ERP Maestro will be demonstrating its award-winning solution and offering free “SAP Health Checks” to any company attending SAPinsider’s GRC 2014 Conference, March 18-21, Walt Disney World® Swan and Dolphin resort in Orlando, Florida, Booth #325. GRC 2014 is an annual collaboration of SAP and SAPinsider and is the preeminent event for professionals who use and support SAP governance, risk, audit, and compliance solutions.

U.S. enterprises lose an estimated 7% of annual revenues to fraud according to The Association of Certified Fraud Examiners. Segregation of Duties (SoD) in SAP, the business application used by 180,000 companies worldwide and 74% of the Fortune 500, is a top contributor in these fraud activities and is a key requirement for avoiding shareholder lawsuits and achieving Sarbanes Oxley (SOX) Compliance. SoD is also key to an effective security strategy to protect against rising SAP critical vulnerabilities that can lead to fraud and embezzlement.

These organizations are turning to ERP Maestro’s ground-breaking cloud solution to immediately address their SoD automation, remediation and risk analytics efforts; and save hundreds of thousands to millions of dollars annually through ERP Maestro’s simple subscription-based model (one-time fee of $35,000 plus $1.50 per SAP user monthly, with fixed enterprise plans available):

  • “Quick Fix” for Pre-IPO (S-1 filed) Organizations: Private companies need to prepare for addressing forthcoming SOX audit requirements quickly, often in under a few months, while conserving capital pre-IPO.
  • “Changing the Paradigm” for Small to Medium Enterprises: Traditional SoD solutions costing $500,000-$2,000,000 have been cost-prohibitive to companies in this segment, forcing them to handle it manually, and often improperly, with extra staff and spreadsheets – or not at all.
  • “Stepping Stone” for SAP GRC 10 Customers: Companies waiting to start their SAP GRC 10 implementations, which can take 6-8 months or more to complete, or waiting to receive budget approval, can use ERP Maestro as a stepping stone.

“ERP Maestro has demonstrated innovation in GRC by addressing the need for a low cost and rapidly implemented cloud-based SoD and Access Control solution for companies of any size,” said Michael Rasmussen, Chief GRC Pundit for GRC 20/20 and internationally recognized expert.

In his third annual GRC Technology Innovation Awards blog, Rasmussen adds, “Automated Segregation of Duty and Access Control solutions are known to be exorbitantly expensive and take a considerable amount of consulting resource and time to implement. ERP Maestro’s Access Analyzer™ solution provides Segregation of Duty and Sensitive Access Analytics and reporting over a completely cloud based architecture. With a cloud based delivery mechanism of an Access Controls solution, not a hosted solution technology, customers receive cost benefits of a multi-tenant environment and the exclusivity and security of a dedicated server.”

To read the full blog visit: http://www.grc2020.com/index.php/grc-pundit-blog/190-2014-grc-technology-innovation-award-erp-maestro-delivers-automated-security-access-controls-through-the-cloud


“We are honored to be recognized for our innovation by respected analyst firm GRC 20/20 and are committed to shifting the SoD and Access Control paradigm from a daunting, capital intensive, on-premise software approach to an empowering subscription approach that is implemented in a day, not months, at a fraction of the cost,” stated Howard Frankel, Chief Executive Officer for ERP Maestro.

About ERP Maestro
ERP Maestro provides a complete end-to-end Segregation of Duty and Access Control Analytics solution that is made available to our clients via a subscription service. Implementation, MaestroCare® support, training, software updates and new feature releases are included as part of the service, and Microsoft Azure ™ global data centers provide our clients with secure 24/7 anywhere access. As a low cost, high value all-inclusive subscription service, ERP Maestro’s Access Analyzer™ accelerates the identification of SoD conflicts to expedite the remediation effort, while eliminating the need for significant capital expenditures. For additional information visit http://www.erpmaestro.com or follow on Twitter @ERPMaestro.

GRC 2014 News image

ERP Maestro Receives the 2014 GRC 20/20 Technology Innovation Award

Date_Icon
March 5, 2014

ERP Maestro is proud to have received the GRC 20/20 Technology Innovation Award. This award reflects the groundbreaking nature of our Access Analyzer solution and is a testament to the hard work and dedication of our team.


   GRC 20/20 announcement - Link to official announcement on GRC 20/20 website


ERP Maestro, Inc. , the only subscription-based cloud service provider of Segregation of Duty (SoD) and Access Control solutions for SAP™ users, today announced the results of a customer study revealing 78-85% cost savings compared to traditional software alternatives – effectively making SoD adoption a reality for enterprises of all sizes. The company also announced that its flagship platform Access Analyzer™ has been honored with a 2014 GRC Technology Innovation Award by independent analyst firm GRC 20/20 recognizing technologies revolutionizing the Governance, Risk Management and Compliance (GRC) market.

ERP Maestro will be demonstrating its award-winning solution and offering free “SAP Health Checks” to any company attending SAPinsider's GRC 2014 Conference, March 18-21, Walt Disney World® Swan and Dolphin resort in Orlando, Florida, Booth #325. GRC 2014 is an annual collaboration of SAP and SAPinsider and is the preeminent event for professionals who use and support SAP governance, risk, audit, and compliance solutions.

U.S. enterprises lose an estimated 7% of annual revenues to fraud according to The Association of Certified Fraud Examiners. Segregation of Duties (SoD) in SAP, the business application used by 180,000 companies worldwide and 74% of the Fortune 500, is a top contributor in these fraud activities and is a key requirement for avoiding shareholder lawsuits and achieving Sarbanes Oxley (SOX) Compliance. SoD is also key to an effective security strategy to protect against rising SAP critical vulnerabilities that can lead to fraud and embezzlement.

These organizations are turning to ERP Maestro’s ground-breaking cloud solution to immediately address their SoD automation, remediation and risk analytics efforts; and save hundreds of thousands to millions of dollars annually through ERP Maestro’s simple subscription-based model:

  • “Quick Fix” for Pre-IPO (S-1 filed) Organizations: Private companies need to prepare for addressing forthcoming SOX audit requirements quickly, often in under a few months, while conserving capital pre-IPO.
  • “Changing the Paradigm” for Small to Medium Enterprises: Traditional SoD solutions costing $500,000-$2,000,000 have been cost-prohibitive to companies in this segment, forcing them to handle it manually, and often improperly, with extra staff and spreadsheets – or not at all.
  • “Stepping Stone” for SAP GRC 10 Customers: Companies waiting to start their SAP GRC 10 implementations, which can take 6-8 months or more to complete, or waiting to receive budget approval, can use ERP Maestro as a stepping stone.

“ERP Maestro has demonstrated innovation in GRC by addressing the need for a low cost and rapidly implemented cloud-based SoD and Access Control solution for companies of any size,” said Michael Rasmussen, Chief GRC Pundit for GRC 20/20 and internationally recognized expert.

In his third annual GRC Technology Innovation Awards blog, Rasmussen adds, “Automated Segregation of Duty and Access Control solutions are known to be exorbitantly expensive and take a considerable amount of consulting resource and time to implement. ERP Maestro’s Access Analyzer™ solution provides Segregation of Duty and Sensitive Access Analytics and reporting over a completely cloud based architecture. With a cloud based delivery mechanism of an Access Controls solution, not a hosted solution technology, customers receive cost benefits of a multi-tenant environment and the exclusivity and security of a dedicated server.”


To read the full blog visit: http://grc2020.com/2014/03/05/2014-grc-technology-innovation-award-erp-maestro-delivers-automated-security-access-controls-through-the-cloud/

About ERP Maestro
ERP Maestro provides a complete end-to-end Segregation of Duty and Access Control Analytics solution that is made available to our clients via a subscription service. Implementation, MaestroCare® support, training, software updates and new feature releases are included as part of the service, and Microsoft Azure ™ global data centers provide our clients with secure 24/7 anywhere access. As a low cost, high value all-inclusive subscription service, ERP Maestro’s Access Analyzer™ accelerates the identification of SoD conflicts to expedite the remediation effort, while eliminating the need for significant capital expenditures. For additional information visit http://www.erpmaestro.com or follow on Twitter @ERPMaestro.

GRC Innovation Award 2014

ERP Maestro Welcomes New Global Client

Date_Icon
October 6, 2013

Weston, FL (PR Newswire) October 6, 2013 - ERP Maestro® Inc. today announced the launch of the only Cloud-based Segregation of Duty and Sensitive Access Analytics solution available to ERP users today, as well as their newest global client. According to its Founder and Chief Technology Officer, Jody Paterson, ERP Maestro’s mission is to make the identification, remediation and on-going maintenance of Segregation of Duty (SoD) risk and the resolution of Sarbanes-Oxley (SOX) internal access control violations simple and cost effective.

As the only Cloud-based Access Control Analytics solution available today that is engineered with a rapid implementation toolset and actionable remediation reporting capabilities, ERP Maestro clients are provided with an accelerated means to identify access control risk issues. This is accomplished via an extremely cost effective, high value Software as a Service subscription that eliminates the need for capital intensive acquisitions of on premise software, hardware, annual software maintenance costs and lengthy consulting projects. Jody Paterson, in his former capacity as a Director of the KPMG SAP® Security Analytics team, served as a thought leader, subject matter expert, conference presenter, and managed innumerable project teams and implementations of on premise ERP access control solutions. According to Jody, “While on premise GRC software solutions are highly effective in addressing the risk posed by SoD, they are exorbitantly expensive and take months to implement. Many companies have limited budgets and do not want the capital expense of procuring and maintaining an on premise solution. In the past, complexity and cost were significant impediments for many companies in achieving SoD compliance. With the advent of ERP Maestro®, access risk compliance is no longer a daunting task or expense."

ERP Maestro also announced the addition of a global corporation specializing in security and asset protection as an ERP Maestro client. This client, with over 69,000 employees worldwide, spent many months evaluating various on premise SoD software alternatives for SAP® R3 that in the end, produced an unmanageable number of false positive SoD conflicts that could not be efficiently remediated. According to their Senior Manager of Internal Controls & Policies, “We were able to implement ERP Maestro within days. ERP Maestro’s unique cloud based analytical engine and reporting capabilities provided the capability for us to quickly and accurately identify our true SoD conflicts. In a surprisingly short period of time, we were able to accurately assess our SoD risk, while saving the company significant costs for capital intensive software and on-going software maintenance.” Their Senior Director of Applications went on to say, “I found the ERP Maestro team to be extremely knowledgeable and was impressed with their level of professionalism and execution in quickly configuring the application to produce the SoD reports. While I was initially skeptical that ERP Maestro could simplify our SoD conflict analysis, I quickly came to the realization that not only could they simplify it, but they could bring a level of accuracy to the process I never expected.” Contact ERP Maestro’s Media representative for additional information regarding this client announcement.

About ERP Maestro: ERP Maestro provides a complete end-to-end Access Control Analytics solution that is made available to our clients via a monthly subscription service. MaestroCare® Support, software updates and new feature releases are included as part of this service, and Microsoft Azure ® global data centers provide our clients with secure 24/7 anywhere access. As a low cost, high value all-inclusive subscription service, ERP Maestro’s Cloud based Access Analytics solution accelerates the identification of SoD conflict to expedite the remediation effort, while eliminating the need for significant capital expenditures. ERP Maestro is headquartered in Weston, Florida, with offices in midtown Manhattan and Naples, Florida. Further information about ERP Maestro can be found at www.erpmaestro.com.

Media Contact:
Howard Frankel
866-350-9106866-350-9106, Ext 802 media@erpmaestro.com

New Global Client