Risk management & audit security implemented in SUIM’s Emergency Handler
In an emergency situation, large potential risks can arise from the additional authorisations deliberately assigned. This must be counteracted by ensuring that all activities are being recorded and thus, can be analysed. If risks occurred, these must be identified and reviewed.
The Emergency Handler collects and analyzes all activities of the Emergency User (Activities Detector) in the period from the opening to the end of the emergency. This includes in particular:
- The called business transactions
- The generated table changes
- The change documents generated
- Changes made to user and authorization master records
SUIM’s Emergency Handler guarantees auditable security by logging all activities with and in the Emergency Handler (opening, termination, customizing, etc.), as well as all results of the Activities Detector and making them available to subsequent checks.
Optionally, the Compliance Enforcer can be used to perform a check of actual data during an emergency against the defined business risks.