Webinar

Cybersecurity

Wednesday 9th February 2022 - 9:00am - 1:15pm

Dial In Webinar

THIS EVENT WILL TAKE PLACE ONLINE

UKISUG working in conjunction with SAP have created this event for our Cybersecurity community.

Cybersecurity within most companies has rapidly evolved from being an IT/Security topic to firmly landing on the desks of the rest of the board. The risks are so great that every executive, and every employee needs to be aware of the challenges and their responsibilities. *New figures from the National Fraud Intelligence Bureau show a 7 times spike in reported instances of cyber-crime in UK during the first 6 months of 2021 (£1.3Billion) compared to 2020. This is already a shocking statistic but it’s only the tip of the iceberg; the scale of cybercrime is impossible to accurately estimate because a lot of companies that are victims of it really don’t want it to become public. The financial damage can be significant but the reputational damage resulting from attacks can be long-reaching and ultimately more costly. In addition, regulations continue to evolve to protect shareholders and to protect the personal data and privacy for individuals. These regulations now have ‘teeth’ as Amazon recently found out when they were fined €¾Billion. The added vulnerabilities created by Covid and the exodus of employees to home offices have only proved catalysts to an already incredible situation.

UKISUG and SAP understand the awesome responsibilities this places on us; from ensuring customers data is protected in their datacentres to minimising code vulnerability in their software; from educating their staff to mould a ‘human firewall’ to ensuring that they have appropriate protective processes in place; from ensuring that they are continuously updating/patching their own tools to ensuring that they are offering customers world-leading solutions to protect their estates. For SAP customers, their ‘crown jewels’ are usually stored within their ERP systems and SAP know that cyberattacks are focusing more and more on ERPs** for exactly that reason.

Join the event to hear;

  • How SAP and partners can help mitigate the biggest risks
  • Vodafone talk about their implementation of SAP GRC solutions for 100,000+ users
  • CISO views on cybersecurity from Tim McKnight (SAP) and Nigel Henderson (Tata Steel)
  • Follow a cyberattack and its response in real-time with SAP Enterprise Threat Detection

UK loses £1.3bn to fraud and cyber crime so far this year (computerweekly.com)*

ERP applications are under cyber attack, research confirms (computerweekly.com)**


Our Audit, Control and Security (ACS) SIG is a well-supported group attended by a cross-section of professionals working with SAP and representing the following business areas: IT Security; (including SAP Basis experts) IT & Financial Audit; and Risk Management.

Our UKISUG Audit Control & Security SIG Chairs:

Brian Froom has 21+ years’ experience as an IT Auditor across different sectors. He is currently involved in the security and monitoring of Tata Steel’s SAP installations across UK and Europe.

Rhian Parry has been leading Welsh Waters IT External Audits since 2012 along with the SAP Access and Authorisations Annual user reviews with SAP licence Management now in her remit as Dwr Cymru Welsh Water’s SAP Assurance Lead within the SAP Centre of Excellence.

Event Speakers

Arndt Lingscheid

Solution Owner for SAP GRC – Security

SAP

In 2007, Arndt served as product manager for various SAP add-on products, and then in 2013, became pre-sales and product manager for SAP security add-on products. During that time he audited many SAP systems worldwide. September 2019, he became Product Manager for SAP Enterprise Threat Detection.

Brian Froom

Audit, Control & Security Co-Chair

UKISUG

Brian has been involved in SAP in both an IT Auditing and Security capacity since 2005. He has 21+ years’ experience as an it Auditor across different sectors. He is currently involved in the security and monitoring of Tata steel’s SAP installations across UK and Europe.

Sukhdeep Singh

Head of Roles, Governance, and Compliance

Vodafone

In his current role, he is responsible for steering GRC Solutions in Vodafone’s EVO landscape to ensure adequate Access and Process compliance. He is actively driving multiple compliance and automation initiatives to standardise and streamline processes to align with the company’s strategic vision.

Chris Johnston

Head of Finance & Risk CSA, EMEA North

SAP

Currently leads the EMEA North CSA team for Finance and Risk solutions. He has a degree in Accounting and a Master’s degree in Computer Science. Since then, he has over 25 years’ experience in Finance and Security positions with the last 15 years spent working at SAP.

Tom Venables

Application & Cyber Security Practice Director

Turnkey Consulting

Having spent nearly 20 years securing SAP applications across a range of clients covering a multitude of industries, Tom advocates strongly for the application of cybersecurity principles to business critical applications, closing the gap between application owners & information security functions.

Jonathan Cooper

Pre-sales Advisor

Onapsis

Jonathan is a pre-sales advisor at Onapsis who offer mission critical application security, compliance, and resiliency. His background started initially in Finance and spans over 20 years with SAP across supply chain management, Business Intelligence, S/4HANA and data protection/security.

Paul Lloyd-Smith

UK/I Lead GRC Customer Solution Advisor

SAP

Paul has been working with SAP UK for just over 6 years. In this time, he has assisted over 50 organisations in their selection of SAP solutions. He is currently working as part of the Customer Solutions Advisory team leading engagement in the UK.

Gabs Fiata

SAP Enterprise Risk Management and Cybersecurity solutions

SAP

Part of the global SAP solutions team, his innovations are supporting companies to reach the desired state of application security, as well as providing the vision on how to modernise enterprise risk management processes.

Nigel Henderson

Head of Information Security

Tata Steel

Interested in attending this event?


09:00 - 09:20

UKISUG introduction / Cybersecurity & Information Security @ SAP

Brian Froom

Audit, Control & Security Co-Chair - UKISUG

Chris Johnston

Head of Finance & Risk CSA, EMEA North - SAP

09:20 - 09:25

Welcome from Tim McKnight (SAP CISO)

09:25 - 10:00

Story from a CISO (Tata Steel)

Brian Froom

Audit, Control & Security Co-Chair - UKISUG

Nigel Henderson

Head of Information Security - Tata Steel

10:00 - 10:35

Turnkey – How to engage the CISO

Tom Venables

Application & Cyber Security Practice Director - Turnkey Consulting

10:35 - 11:00

Break

11:00 - 11:35

Managing user access at Vodafone

Sukhdeep Singh

Head of Roles, Governance, and Compliance - Vodafone

11:35 - 12:10

SAP Process Control + Onapsis Comply

Jonathan Cooper

Pre-sales Advisor - Onapsis

12:10 - 12:55

Follow a cyber attack and its response in real time

Arndt Lingscheid

Solution Owner for SAP GRC – Security - SAP

Gabs Fiata

SAP Enterprise Risk Management and Cybersecurity solutions - SAP

12:55 - 13:15

Q&A & Close

Brian Froom

Audit, Control & Security Co-Chair - UKISUG

Paul Lloyd-Smith

UK/I Lead GRC Customer Solution Advisor - SAP