S4 HANASecurity

S/4 HANA, Security Strategy, SEM Banking Projects

Dr.Dipl.Wirtsch.Ing. Mehmet  ERDAS

My last project role:

SAP SEM Bank Monitoring and Control

Profit Analyzer PA

Risk Analyzer RA MPR VaR

Strategic Analyzer LIQUI 

SAP ILM   Scheer GmbH, Kostal GmbH, DEKA Bank

…..

Something about my working history:

I work since 1998 with SAP Product Portfolio BW BI, HANA,  S4 HANA, SAP ILM, SAP SEM, WM..

My Focus is BW BI HANA S4HANA, Data Management, Security Strategy, ERP  Cloud and Mobility Solutions. I have studied Electrical Engineering Microwaves Radar Antenna Design, Computer Science, IT-Enterprise Architectures, 1975, B.Sc from METU. I have done my Masters Degree on Management Science, Marketing Research Methods, Data Management, Project Management, 1978, M.Sc. From METU

I have done  my Ph.D. in Germany on Planning and Optimization of Large Scale Supply Networks, like Water, Energy, Oil-Gas,Electricity, Telecommunications, at Technical Univ. of Braunschweig, Carola Wilhelmina, 13.08.1982 Ph:D. Dr.rer.pol Dr.Dipl.Wirtsch.ing.

I worked by SIEMENS Munich, Vienna, Istanbul as Large Scale Projects Coordinator, ORACLE Vienna as Resource Manager, SAP UK as HANA Ramp Up Coach, Accenture London as SAP Manager, Daimler Benz Stuttgart as Technical Project Manager for Data Migration, Volkswagen Financial Services as BW Expert, Deutsche Bank Wealth Management Self-Service Bi Architecture Design, Huawei Ireland Research Lab Europe Big Data Customer Smart Care Development …..

SoD

Key Components of SoD management Framework
Definition Example
All planned SAP Systems Modules Apps in target Architecture SAP AP, SRM, AR….
All planned Non-SAP Systems Modules Apps in target Architecture Non SAP  AP MM AR..
Compliance to SAP Best Practices; SoD Policies Rules Security Control Monitoring Sources of Threat; internal and external misuse conduct
Deviation from SAP Best Practices; Definition of misuse in case access granted Restrict Authorizations Check and Monitor in real time
S4HANA New Considerations in Designing new SoD Ruleset
Business Integrity Enterprise Ris management/ VC-Business impact AUDIT management
Introduction of New S4HANA Security layers
SAP Fiori as new GUI Presentation layer, DB Layer HANA, new Apps, GRC, MM…incorporated in S4HANA
Changes in system and Arch level (new Connectors Configuration)




200 new Transactions
Consolidation and replacement of old transactions








Simplifications and Checks   Simplified Finance logistics BP CVI Integration








Workflow Changes  










Access Control Tool 




Fiori




HANA database




Previlege based Role design  to secure data in S4HANA    for direct access to critical data(admins, data modelers, developers, support staff etc..)



Restrict access to critical data


SAP S4HANA Role Classifications SAP Role build and User Assignment process 









Job based vs Task based Initial Role Templates, Grouped Integrated Roles BP CVI integration, All Company Codes, All Cost centers

SoD RISK ASSESSMT AT ROLE LEVEL against SOD Risk Assessment at User level


Single vs Composite Roles










Custom vs pre delivered SAP Roles










HR or Position based Design vs Functional design




ROLE TEMPLATE FOR S4HANA CLOUD_INITIAL ROLE AND USER DESIGN



Role Name /Initial Template Transaction Code Transaction Code description



Billing  VF-01-31 Create/Cancel  Billing Docs 
Blocked Billing Role VF02 V.23
SD Customer Master View VD01-VD04 Create Customer Sales/Changes



SAP Master Roles  All CompanyCodes P&C Centers




SAP Derived Roles Business Unit A Company Code 


Overall End to End SAP S4HANA Layered Target Security Model Architecture Tasks to be done
Key  Aspects Sub-Topic Activities Identify SAP Best practices, relevant secNotes, security patches




Security Strategy Security Model/ Security Policy/Security Lifecycle Management Document Security Strategy paper BBD for risk mitigation/remediation SOLMAN7.2 OnapsisERPScan ESNC SAOYTO SNOTE Patches..Run to identify, monitor, control data volume management, data quality and Interfaces definitions, security risks of the existing and targeted overall architecture end to end
Classification and Identifacation of Risks: Critical, High, Medium Low Define BBD specific corporate SoD Policies to create new roles/assignments independent security design for HCM HR Roles based purely on job functions Design new Roles with increase granularity and more restrictive access to prevent SoD conflicts in all Sec.levels
Access Security: Users, Roles, System_Package_Appl_Analytic_Object Privileges Document Access Security Strategy paper BBD Security Model, Security recommendations, Password Policy, SoD and overall Threats and Risks Identification
Data security: data integrity change mgt SoD encyrption Authentication Authorization HLD Data Security After SODs KPIs Risks and Threats are identified, define/restrict how sensitive business data are to be enabled to create, change, modify,post
Application API Security: HLD Application Security Automated SAP Security Monitoring CCM GRC Access Solution tool to analyze SoD Conflicts at role and user level
Network and Communication RFC Security HLD Network and Communication Security Competition sensitive business data like vendor pricing lists, contracts, prices, customer lists, address, bill of material(BOM) FI-CO HR data
Database Security HLD Document Database Security Strategy paper BBD For security strategy policy design differentiate and define precisely Job-based versus task -based user roles and decide on mappings and validate test SoD Conflicts
Non_SAP System landscape data Apps Apis network Rfc security Business owners GPOs should get involved in SoD Risk Management process  
Introduction of new Security layers for new S4HANA Business Transactions Simplifications List of all transactions that have been simplified, consolidated, removed Identify and decide on Single vs Composite Roles i.e. several task based roles, in order not to grant unnecessary access to systems, objects, data, apps…
S4HANA new Role Build and User Assignment Process Identify all SoD Conflicts root causes role based user-based that cannot be resolved Design and identify S4HANA Master Roles (BP CVI Integration…) for all company codes and cost centers,to enable SoD Risk assesment at Role level and User level.
Cyber security           SAP Threat Matrix Sec Notes, Patches, KPIs Measures  HLD Cyber Security BBD to identify all threats and vulnerabilities and measures identify pre-delivered SAP roles and assess identify decide  precisely if any business specific  customization requirements are to be met
SSO Kerberos/SPNEGO, SAML, SAP logon and assertion tickets,  X.509 certificate. SAP Security Issues identify SoD Conflicts existing within roles;automate SoD Checks using a tool Warning: pre-delivered SAP roles are usually composite roles, leading to violation of  corporate access security policy 
(DG) Data Governance GRC SAP S4HANA    

Governance Organization Master data Transactional data meta data Process and Work Flows


Security review and Monitoring/Tooling Client Side Server Side Cloud Apps Data Encryption


Review Audit Logs/Change and Transport Management


ODP  CCM

Data Models      

Data Mapping (Existing)


Data Model (Enhanced CEDM)


Master data objects


Ownership and Rules including Governance Model Define framework
















Data Quality and Cleansing      

Aligned scope – Master data (supplier master, material master (transactional data?)


No. of systems / sites coverage


Decision on tools (and costs) to be used for assessment


Tool installation









Security Strategy HLD IAM Update roles users Authorizations Authentication/Organisational Security SoD    
Security Policy, Industry Standards, Training    

Secure DB, Apps, Data, Infrastructure,NetworkCommunications RFC LDAP..


Ensure real time end to end Monitoring of strong security Infrastructure S4HANA Cloud Security of Migration Policy /security Tracing/certification Management/SSO


S4HANA new UI Fiori, Ariba, Success factors/OS/Update roles users previleges/


Change and Transport management/Simplifications/Composite Roles Users Tasks defntion

Access Security IAM      

IAM Policy


SoD Conflicts Analysis Test Validation on data structures Rules and policies

Auth/Autentication Methodology

Encyrption Object list /Scope

integrate S4HANA Cloud Applications

Data Security      

Document Data Strategy Data Sources, Types, targets, Structures, Objects MD, TD, MDAta Metadata

Profiling and Duplications – Extraction, Loading and analysing


GDPR Compliance Data protection privacy regulatory SAP ILM


Data Anonymization/Encyrption/PKI





Application Security SAP S4HANA ALM previlege based new role design for new Applications to restrict access    
Fiori Ariba Success Factors UI requires re-design of Authorizations for new access policy    

Create/Grant Apps previledges to Users Roles Objects Systems Modules MD BPML


APIs Standardization/Network Directory File Sharing of Applications


Identification of Business Risks/Deviation from SAP Best Practices Explorer 


Precise and Clear Risk description for all Threats and Vulnerabilities identified


Governance Risk Compliance for all Job Functions and overall SoD Rules


SoD and Sensitive Access Policies, Change management, MD maintenance MDM MDG

Database Security HANA DB Security Console database objects content catalog projects.schemas..    
Assignment of Previleges for Users and Roles SoD MD Objects, BPML     

Authorizations/Tracing/Test and Validation


Encyrption/Certificate Management


Authentication/Auth.Privileges: System,Object, Package, Analytic, Application levels


Operating System/S4HANA Studio


Connectivity/RFC/ODBC/JDBC/JSON…


S4HANA DB Servers/Instances


Archiving retrieval of data stored ALM ILM PLM GDPR





 Process Security SoD Conflicts matrices for each process/Workstream    

ODP Operational data provisioning


HANA based CCM Continuous Control Monitoring of Process Streams

































 Infrastructure Security Cloud Applications Interfaces Data Storage Security    
Securing SAP Fiori    
Securing S4HANA    
Securing the Application Server    
Securing the Data Access/Roles Authorizations SoD Conflicts Jobs Tasks Functions    
Securing SAP Web Dispatcher    
Securing HANA database    
Securing the Operating System    
Securing the network and Communications RFC     
Security monitoring    
Conceptual Considerations/Security Strategy Security Policy Security Threats SoD Conflicts    

IaaS PaaS SaaS 


Self-service


SAP Infrastructure Security


Kerberos/SPNEGO, SAML, SAP logon and assertion tickets,  X.509 certificate.


Lifecycle management ILM ALM PLM..


Gateways, Firewalls, Routers, Web Dispatcher









SAP Security Services SAP EarlyWatch Alerts 


Security Optimization Services


Product Security Response Team 


Security Notes (login required) 


Revision Strategy (login required)


SAP Secure software development lifecycle


Best practices and recommendations for developing roles in SAP HANA


Security Guide 


Master Guide (network topics) 


Administration Guide (step-by-step) 


SQL Reference Guide 


SAP HANA Security Checklists and Recommendations 

S4HANA Security Strategy, Process WorkStreams and Applications Overview

S4HANA  

WORKSTREAMS
STP
ETP
OMF
AFS
AFS
R2R
ME
L
QM
DATA SOURCES
APPL APIS
DATABASE/STORAGE
TARGET ARCH
JOURNEY MGT
PMO
Process Master List Release Deployment (1, 2, 3)
Level End to End Workstream transportato
Process sub area
Potential BBD functions SAP S/4 HANA  OP 1809 Best Practice Initial Baseline After review in CW05 19 What if scenario “Project system” In Scope (SAP)
Out of Scope
SAP Integration
Legacy System Integration Comment Workstream Lead Review & Sign Off Solution Architect Review & Sign Off
1 AFS After Sales & Services AS
2 AFS 01 After Sales & Service Master Data AS 3 3 3
3 AFS 01 01 After Sales Master Data tbd   3 3 3          
2 AFS 02 Component Repair & Overhaul AS
3 AFS 02 01 Repair tbd   3 3 3     Maximo     
3 AFS 02 02 Public, Private Partnerships Yes (OMF)   3 3 3          
3 AFS 02 03 Strategic Joint Ventures tbd   3 3 3          
3 AFS 02 04 Operations tbd   3 3 3          
3 AFS 02 05 Maintenance of Way  tbd   3 3 3          
3 AFS 02 06 Non OAM Parts  tbd   3 3 3          
3 AFS 02 07 Fleet Support Agreement tbd   3 3 3          
2 AFS 03 VRO – Vehicle Repair and Overhaul AS
3 AFS 03 01 ALM   Overhaul tbd   3 3 3          
3 AFS 03 02 Asset Life Management Service tbd   3 3 3          
3 AFS 03 03 Service Provider, Integrator tbd   3 3 3          
3 AFS 03 04 Safety Case Management tbd   3 3 3          
3 AFS 03 05 Design Authority Support tbd   3 3 3          
3 AFS 03 06 Vehicle Software  Support  Agreement tbd   3 3 3          
3 AFS 03 07 Obsolescence Management Agreement tbd   3 3 3          
3 AFS 03 08 Maintenance Optimization Services tbd   3 3 3          
3 AFS 03 09 Flexxcare Operational Agreement tbd   3 3 3          
3 AFS 03 10 Vehicle  System &  Software Upgrades No    3 3 3 Out of Scope        
2 AFS 04 Material solutions AS
Customer Consingment 
3 AFS 04 01 Vendor Managed Inventory Vendor Consigment Stock)  tbd   3 3 3          
3 AFS 04 02 Material Support Agreement tbd   3 3 3          
3 AFS 04 03 Inventory Management  tbd   3 3 3          
3 AFS 04 04 Supply Chain Ensurance tbd   3 3 3          
3 AFS 04 05 Spare Part Sales tbd   3 3 3          
3 AFS 04 06 Material Solutions to support – Component Repair & Overhaul tbd   3 3 3          
2 AFS 05 Service support AS
3 AFS 05 01 Tech Support & Spares Agreement tbd   3 3 3          
3 AFS 05 02 Extended Warranty tbd   3 3 3          
3 AFS 05 03 Digitization Solution Partner No   3 3 3 Out of Scope        
3 AFS 05 04 Cyber Security Support NO   3 3 3 Out of Scope        
3 AFS 05 05 System Support Agreement No   3 3 3 Out of Scope        
3 AFS 05 06 Condition Data Support Agreement No   3 3 3 Out of Scope        
3 AFS 05 07 Vehicle Reliability Solutions No   3 3 3 Out of Scope        
3 AFS 05 08 Performance Deep Dives No   3 3 3 Out of Scope        
3 AFS 05 09 Process Definition Services No   3 3 3 Out of Scope        
Process Master List Release Deployment (1, 2, 3)
Level End to End Workstream transportato
Process sub area
Potential BBD functions SAP S/4 HANA  OP 1809 Best Practice Initial Baseline After review in CW05 19 What if scenario “Project system” In Scope (SAP)
Out of Scope
SAP Integration
Legacy System
1 IBP Integrated Business Planning (IBP) IBP Planning tbc tbc tbc
2 IBP 01 IBP Master Data IBP Planning tbc tbc tbc
3 IBP 01  01 Define Supply Chain Network / Transportation Lanes Planning   tbc tbc tbc    
3 IBP 01  02 Define Planning Parameters Planning   tbc tbc tbc    
3 IBP 01  03 Product Master Defination Planning   tbc tbc tbc    
3 IBP 01  04 Location Master data Planning   tbc tbc tbc    
3 IBP 01  05 Customers/ Projects Planning   tbc tbc tbc    
3 IBP 01  06 Currency Exchange  Planning   tbc tbc tbc    
3 IBP 01  07 UOM conversion Planning   tbc tbc tbc    
3 IBP 01  08 Planning BOM  Planning   tbc tbc tbc    
3 IBP 01  09 Time series / Calendars Planning   tbc tbc tbc    
3 IBP 01  10 Resource / Work centers Planning   tbc tbc tbc    
2 IBP 02 Demand Planning IBP Planning tbc tbc tbc
3 IBP 02 01 Demand Planning Preparation Planning   tbc tbc tbc    
3 IBP 02 02 Statistical Forecasting Planning   tbc tbc tbc    
3 IBP 02 03 Manual Forecast Adjustments  Planning   tbc tbc tbc    
3 IBP 02 04 Demand Planning Alerts & KPIs Planning   tbc tbc tbc    
3 IBP 02 05 Review and release Consensous Forecast Planning   tbc tbc tbc    
3 IBP 02 06 Scenario Planning (What if Analysis) Planning   tbc tbc tbc    
2 IBP 03 Supply Planning IBP Planning tbc tbc tbc
3 IBP 03 01 Master and Transactional Data Prepreration for Supply Planning Planning   tbc tbc tbc    
3 IBP 03 02 Distribution Requirement Planning (Heuristic) Planning   tbc tbc tbc    
3 IBP 03 03 Rought Cut Capacity planning (RCCP) Planning   tbc tbc tbc    
3 IBP 03 04 Capacity Review and Levelling (Optimizer / Manual) Planning   tbc tbc tbc    
3 IBP 03 05 Review and Release Supply Plan Planning   tbc tbc tbc    
3 IBP 03 06 Supply Planning Alerts & KPIs Planning   tbc tbc tbc    
3 IBP 03 07 Scenario Planning (What if Analysis) Planning   tbc tbc tbc    
2 IBP 04 Sales, Inventory and Operations Planning IBP Planning tbc tbc tbc
3 IBP 04 01 Demand Planning Review Planning   tbc tbc tbc    
3 IBP 04 02 Financial Reconciliation Planning   tbc tbc tbc    
3 IBP 04 03 Supply Review Planning   tbc tbc tbc    
3 IBP 04 04 Pre S&Op Review Planning   tbc tbc tbc    
3 IBP 04 05 Executive Management business review Planning   tbc tbc tbc    
3 IBP 04 06 Monitor S&Op Process Planning   tbc tbc tbc    
3 IBP 04 07 KPI Monitoring Planning   tbc tbc tbc    
3 IBP 04 08 Collaboration and Task Management Planning   tbc tbc tbc    
3 IBP 04 09 Scenario Planning (What if Analysis) Planning   tbc tbc tbc    
2 IBP 05 Inventory Optimization IBP Planning tbc tbc tbc
3 IBP 05 01 Calculating the Inventory targets at desired customer service level Planning   tbc tbc tbc    
3 IBP 05 02 Inventory Planning Alerts & KPIs Planning   tbc tbc tbc    
Process Master List
Level End to End Workstream transportato
Process sub area
Potential BBD Persona
1 ME Production Planning & Execution Production
2 ME 01 Production Engineering / Production Preparation (PPE Master Data) Production
3 ME 01 01 Material Master Data (plant level, all views, including Production Version,  MRP area, and Manufacturing’s parts, PRT material master, hazardous goods) MMDM (Manufacturing Master data Manager)
3 ME 01 02 Capacity planning, set-up Pool Capacity MMDM (Manufacturing Master data Manager)
3 ME 01 03 Work center (all views, capacity assignment (pool capacity, individual capacity), cost center assignment, work center hierarchy) MMDM (Manufacturing Master data Manager)
3 ME 01 04 Managing Production Supply Area MMDM (Manufacturing Master data Manager)
3 ME 01 05 MBOM (including alternatives, configuration characteristics, alternative items, discontinuation, reference point, sort string, kitting- Non-stock item type, R item type, L-item type, costing, etc.) MMDM (Manufacturing Master data Manager)
3 ME 01 06 Production Resources and Tools MMDM (Manufacturing Master data Manager)
3 ME 01 07 Routing Preparation and Release (including operations, and quality inspection steps, and PRT view (WI+documents/tooling assignment), and component assignment), routing history/ change approach MMDM (Manufacturing Master data Manager)
3 ME 01 08 Manufacturing Documents (special procedures, work instructions, sketches, CNC program, tec.) MMDM (Manufacturing Master data Manager)
3 ME 01 09 Manufacturing’s Change Master & Updating Master Data & Releasing Change with or without triggering OCM MMDM (Manufacturing Master data Manager)
3 ME 01 10 Standard Network (sequence of workstation’s) MMDM (Manufacturing Master data Manager)
3 ME 01 11 Preparing Sourcing of System (kits) MMDM (Manufacturing Master data Manager)
3 ME 01 12 Preparing multi-site requirements planning Production Planner
3 ME 01 13 Managaing Planned Idependent Requirments (e.g. metal sheet, profile, glue, paint, etc.) Production Planner
3 Scope clarification required, what data? Maintenance Master Data Maintenance Planner
2 ME 02 Manage Higher Level Production Planning – Demand Plan and Final Assembly Scheduling (FAS) Production
2 ME 03 Manage Production Planning Production
3 ME 03 01 Material Requirements Planning & Coverage & Analysis, primary requirements management (Sale order, FAS, etc.) Production Planner
3 ME 03 02 Managing Multi-Site Stock Transfer Production Planner
3 ME 03 03 Production Scheduling Pre-Assembly Lines (Planned Orders) Production Planner
3 ME 03 04  Capacity evaluation and Leveling Capacity planner
4 ME 03 04 01 Periodical Capacity adjustment, Requirements Planning & analysis Capacity planner
4 ME 03 04 02 Capacity leveling Pre-Assembly and Parts Fabrication Capacity planner
4 ME 03 04 03 Managing Capacity Pool & Teams Capacity planner
3 ME 03 05 Make-to-Order Production (MTO) – Finish Goods Sales and Final Assembly Production Planner
3 ME 03 06 Assemble-to-Order Production (ATO) –  Semifinished Goods Planning and Assembly Production Planner
3 ME 03 07 Make-to-Stock Production (MTS) Production Planner
3 ME 03 08 MTO with variant configuration(CTO) – Finish Goods Sales and Final Assembly Production Planner
3 ME 03 09 MTS with variant configuration (Product Variants) Production Planner
3 ME 03 10 Engineer-to-Order Production (ETO) Production Planner
3 ME 03 11 Demand driven Replenishment Planning  Production Planner
3 ME 03 12 Managing Change Implementation / Rework for Trains and Aircrafts (AVM) Production Planner
3 ME 03 13 Managing Change Implementation / Rework for Inventory items (NCR) Production Planner
2 ME 04 Manage Production Execution Production
2 ME 05 Maintain and Repair (Machines, Jigs and Tools) Maintenance
Process Master List
Level End to End Workstream transportato
Process sub area
1 ETP Engineer to Product
2 ETP 01 ETP Master Data 
3 ETP 01  01 Define Product Frame (Classification) – EG Product building Blocks
3 ETP 01  02 Define Parts Frame (Classification) – All Parts
3 ETP 01  03 Define Naming Convention
3 ETP 01  04 Define Repository (link to ETP 02 10)
3 ETP 01  05 Define Project Frame and assignment to costs
3 ETP 01  06 Define Scoring Model for product ideas
2 ETP 02 Market Research
3 ETP 02 01 Create Market Research project (link to ETP 02 10)
3 ETP 02 02 Identify Market Needs (link to ETP 02 10)
3 ETP 02 03 Identify Customer Needs
3 ETP 02 04 Identify Constraints / Limitations (from existing solutions)
3 ETP 02 05 Incorporate technical development trends / future needs (off cycle)
3 ETP 02 06 Create 1st Level Product Description 
3 ETP 02 07 Validate 1st Level Product Description 
3 ETP 02 08 Prioritize 1st Level Product Descriptions (eg new bogie, new seat – off cycle)
3 ETP 02 09 Create Time-Line (on or off cycle)
3 ETP 02 10 Create/Name/Store Product idea in repository (eg product families for dev countries)
2 ETP 03 On-Cycle-Engineering (Customer Contract)
3 ETP 03 01 Manufacturing Industrialization
3 ETP 03 02 Capacity Planning for Engineering
3 ETP 03 03 Contract Engineering process – order related (ETO) -On-cycle
3 ETP 03 04 Contract Engineering process – order reated (MTO and CTO)-Off-cycle
3 ETP 03 05 Engineering Change Releases
3 ETP 03 06 Define Engineering materials for each blueprint
3 ETP 03 07 Create Manufacturing Materials from Engineering Materials
3 ETP 03 08 Document Info Records
2 ETP 04 Off-Cycle-Engineering (Internal, Non-customer contract)
3 ETP 04 01 Capacity Planning for Engineering
3 ETP 04 02 Create engineering structure (E-BOM)
3 ETP 04 03 Define Product familes/Constituent Assemblies design ownership
3 ETP 04 04 Integration of the different designs
3 ETP 04 05 Define Engineering materials for each blueprint
3 ETP 04 06 Reconciliation of E-BOM with blueprint and release
3 ETP 04 07 Product cost estimate (done by eng.)
3 ETP 04 08 Create Manufacturing Materials from Engineering Materials
3 ETP 04 09 Create M-BOM from E-BOM
3 ETP 04 10 Configuration Management of M-BOM
3 ETP 04 11 Make-or-Buy decision
3 ETP 04 12 Add Jigs, Tools, Documents to the M-BOM
3 ETP 04 13 Reconciliation of M-BOM with E-BOM and release
3 ETP 04 14 Routing Preparation and Release (assembly/quality/WI+documents/tooling)
3 ETP 04 15 Document Info Records
2 ETP 05 As Built
3 ETP 07 01 Reconciliation of Production with M-BOM
2 ETP 06 As Maintained
3 ETP 08 01 Track of Changes to the As Produced BOM
3 ETP 08 02 Update As produced with maintenance tasks/materials
3 ETP 08 03 Reconciliation of As Maintaned with As produced BOM
1 RTR Record to Report Finance and Controlling
2 RTR 01 General Ledger Accounting Finance and Controlling
3 RTR 01 01 Maintain Master Data :RTR-GL-010   Accounting and Financial Close (J58)
3 RTR 01 02 Manage Journal Processing :RTR-GL-020   Accounting and Financial Close (J58)
3 RTR 01 03 Manage Period End Closing (General Ledger):RTR-GL-030   Accounting and Financial Close (J58)
3 RTR 01 04 Reporting   Accounting and Financial Close (J58)
2 RTR 02 Manage Payables and Expenses Finance and Controlling
3 RTR 02 01 Maintain Master Data (Vendors) : RTR-AP-010   Accounts Payable (J60)
3 RTR 02 02 Process and Validate Invoices :RTR-AP-020   Accounts Payable (J60)
3 RTR 02 03 Manage Payment of Invoices : RTR-AP-030   Accounts Payable (J60)
3 RTR 02 04 Manage Post Payment Activities: RTR-AP-040   Accounts Payable (J60)
3 RTR 02 05 Cheque management : RTR-AP-050   Accounts Payable (J60)
3 RTR 02 06 Reconcile Vendor Accounts / Reporting : RTR-AP-060   Accounts Payable (J60)
2 RTR 03 Manage Receivables Finance and Controlling
3 RTR 03 01 Maintain Master Data (Customers): RTR-AR-010   Accounts Receivable (J59)
3 RTR 03 02 Perform Manual Postings : RTR-AR-020   Accounts Receivable (J59)
3 RTR 03 03 Dunning : RTR-AR-30   Accounts Receivable (J59)
3 RTR 03 04 AR Invoice Reporting- RTR-AR-40   Accounts Receivable (J59)
3 RTR 03 05 Manage Collection Process : RTR-AR-050   Accounts Receivable (J59)
3 RTR 03 06 Direct Debit : RTR-AR-060   Accounts Receivable (J59)
3 RTR 03 07 Calculation of Credit Limit : RTR-AR-070   Accounts Receivable (J59)
3 RTR 03 08 Management of Blocked Orders : RTR-AR-080   Accounts Receivable (J59)
3 RTR 03 09 Dispute Management    
2 RTR 04 Perfrom Fixed Asset Accounting Finance and Controlling
3 RTR 04 01 Manage Asset Creation : RTR-AM-010   Asset Accounting (J62)
3 RTR 04 02 Manage Asset Acquisition : RTR-AM-020   Asset Accounting (J62)
3 RTR 04 03 Manage Asset Under Construction : RTR-AM-030   Asset Under Construction (BFH)‎
3 RTR 04 04 Manage Asset Acquisition : RTR-AM-040   Asset Accounting (J62)
3 RTR 04 05 Manage Asset Adjustments : RTR-AM-050   Asset Accounting (J62)
3 RTR 04 06 Manage Asset Sales/Disposals : RTR-AM-060   Asset Accounting (J62)
3 RTR 04 07 Manage Period End Closing (Asset Management): RTR-AM-070   Asset Accounting (J62)
3 RTR 04 08 Manage Year End Closing (Asset Management): RTR-AM-080   Asset Accounting (J62)
2 RTR 05 Cash & Bank Accounting Finance and Controlling
3 RTR 05 01 Maintain Master Data : RTR-CB-010   Basic Bank Account Management (BFA)
3 RTR 05 02 Manage Bank Review : RTR-CB-020   Advanced Bank Account Management (J77)
3 RTR 05 03 Manage Bank Signatory : RTR-CB-030   Advanced Bank Account Management (J77)
3 RTR 05 04 Bank reporting : RTR-CB-040   Advanced Bank Account Management (J77)
3 RTR 05 05 Manage Basic Cash Operation : RTR-CB-050   Basic Cash Operations (BFB)
3 RTR 05 06 Cash Report and Tools : RTR-CB-060   Basic Cash Operations (BFB)
3 RTR 05 07 Cash Appication Integration: RTR-CB-070   Cash Application Integration (1MV)
3 RTR 05 08 other integrations    
2 RTR 06 Month-end closing and consolidation Finance and Controlling
3 RTR 06 01 Complaince Reporting: RTR-CL-010   Advance Compliance Reporting (1J2)
3 RTR 06 02 Event Based Revenue Recognition-Sales : RTR-CL-020   Event-Based Revenue Recognition – Sell from Stock (1K2)‎
3 RTR 06 03 Managing Material Price Changes and Inventory Values : RTR-CL-030   Managing Material Price Changes and Inventory Values (1ZT)‎
3 RTR 06 04 Period End Closing- Maintenance Orders :RTR-CL-040   Period-End Closing – Maintenance Orders (BF7)‎
3 RTR 06 05 GL Allocation Cycle : RTR-CL-050   General Ledger Allocation Cycle (1GI)
3 RTR 06 06 Period End Closing- Plant :RTR-CL-060   Period-End Closing – Plant (BEI)‎
3 RTR 06 07 Inventory Valuation for Year-End Closing : RTR-CL-070   Inventory Valuation for Year-End Closing (BEJ)‎
3 RTR 06 08 Period end Closing: Projects    
2 RTR 07 Overhead Controlling Finance and Controlling
3 RTR 07 01 Maintain Master Data : RTR-OH-010   Overhead Cost Accounting (J54)‎
3 RTR 07 02 Revenue Planning : RTR-OH-020   Revenue Planning (BEA)‎
3 RTR 07 03 Cost Center Planning : RTR-OH-030   General Cost Center Planning (BEX)‎
3 RTR 07 04 Internal Order Planning : RTR-OH-040   Internal Order Planning (BEU)
3 RTR 07 05 Overhead Cost Accounting : RTR-OH-050   Overhead Cost Accounting (J54)‎
3 RTR 07 06 Actual Internal Order : RTR-OH-060   Internal Order – Actual (BEV)‎
2 RTR 08 Costing Finance and Controlling
3 RTR 08 01 Standard Cost Calculation : RTR-C-010   Standard Cost Calculation (BEG)‎
3 RTR 08 02 Actual Costing/Material Ledger RTR-C-020    
2 RTR 09 Profitability Analysis Finance and Controlling
3 RTR 08 01 Profitabilty Analysis : RTR-PA-010   Profitability and Cost Analysis (J55)‎
3 RTR 08 02 Profitabilty Analaysis Realignment : RTR-PA-020   Profitability and Cost Analysis (J55)‎
2 RTR 10* Inter-/Intracompany Processes incl. Transferpricing Finance and Controlling
3 RTR 10 01 Intercompany Business Partner Master Data    
3 RTR 10 02 Intercompany Payables    
3 RTR 10 03 Intercompany receivables    
3 RTR 10 04 Reporting    
3 RTR 10 05 Reconciliation and Adjustments of Intercompany Accounts    
3 RTR 10 06 Intercompany Mark up and Elimination in Material Ledger    
2 RTR 11* Consolidation Finance and Controlling
3 RTR 11 01 Legal (RTR – XX-YYY)    
3 RTR 11 02 Group (Region) (RTR – XX-YYY)    
3 RTR 11 03 Group (Corp.) (RTR – XX-YYY)    
2 RTR 12* Budgeting
3 RTR 12 01 Contract Budgeting     
3 RTR 12 02 Cost Center Budgeting     
3 RTR 12 03 Legal Entity Budget    
2 RTR 13* Project Controlling
3 RTR 13 01 Creation, Maintenance and Closing of Project and Project Structure    
3 RTR 13 02 Material Valuation    
3 RTR 13 03 Maintenance EAC    
3 RTR 13 04 Reporting    





1 QM Quality Management QM
2 QM 01 Manage QM Master Data QM
3 QM 01 01 Maintain Sampling Procedure QM Master Data
3 QM 01 02 Maintain Inspection Method QM Master Data
3 QM 01 03 Maintain Inspection Characteristics QM Master Data
3 QM 01 04 Maintain Quality Inspection Plan QM Master Data
3 QM 01 05 Maintain Q Info Record (vendor) QM Master Data
3 QM 01 06 Maintain Quality operations on Routing QM Master Data
3 QM 01 07 Maintain Material Master QM view QM Master Data
3 QM 01 08 Maintain Catalogs and Selected Sets QM Master Data
3 QM 01 09 Quality Work Center QM Master Data
2 QM 02 Manage Quality Control QM
3 QM 02 01 Quality Inspection For Procurement QM 1FM-Quality Management in Procurement 
3 QM 02 02 Quality Control in Production QM 1E1-Quality Inspection for Goods Receipt from Production
1E1 -Quality Inspection Within the Production Process
3 QM 02 03 Quality Control of Returned Item QM 2FA-Quality Management for Complaints from Customers 
3 QM 02 04 Project gate review Governance QM  
3 QM 02 05 Conformity/baseline Mangement QM ( same as Process ETP 07 01 – Reconciliation of Product with M-Bom and ETP 08 01 – Track of Changes to the As Produced BOM  ??? )
3 QM 02 06 Break of Inspection QM  
3 QM 02 07 Operator Delegation QM  
3 QM 02 08 First Article Inspection QM Incoming:
1FM-Quality Management in Procurement
Production:
1E1 -Quality Inspection Within the Production Process (With Production Version)
1E1-Quality Inspection for Goods Receipt from Production (With Production Version)
3 QM 02 09 Quality audit QM  
3 QM 02 10 Stock Handling QM 1MR – Quality Management in Stock Handling
2 QM 03 Manage non-conformities (NCR) QM
3 QM 03 01 Analysis of defective materials  QM 2F9-Quality Management for Complaints Against Suppliers 
3 QM 03 02 Manage NCR in production QM 2QP-Quality Management of Internal Problems 
3 QM 03 03 Manage Concessions QM 1FM-Quality Management in Procurement + 2F9-Quality Management for Complaints Against Suppliers 
3 QM 03 04 Cost of Poor Quality QM  
3 QM 03 05 8D/CORRECTIVE ACTION MANAGEMENT (CAB) QM  
2 QM 04 Manage traceability QM
3 QM 04 01 Define traceability requirements & conditions (number, what, who, where) QM  
3 QM 04 02 Manage traceability from the Suppliers QM  
3 QM 04 03 Manage traceability in Manufacturing and Assembly QM  
3 QM 04 04 Manage traceability to Customers QM  
3 QM 04 05 Manage Serialization, create and maintain installed base tree QM  
2 QM 05 Manage Complaints QM
3 QM 05 01 Manage Vendor complaint QM 2F9-Quality Management for Complaints Against Suppliers 
3 QM 05 02 Manage Complaints with customer (inc. NCR from customer) QM 2FA-Quality Management for Complaints from Customers 
2 QM 06 Manage Certifications QM
3 QM 06 01 Manage Material Certification (QM) QM 1FM-Quality Management in Procurement (with Quality Certificate)
3 QM 06 02 Manage Vendor Certification (QM) QM 1FM-Quality Management in Procurement  (with Material-Supplier release)
3 QM 06 03 Manage Employees certifications QM  
3 QM 06 04 Manage Production Quality control via self inspection QM 1E1 -Quality Inspection Within the Production Process
2 QM 07 QM Handover and Documentation QM
3 QM 07 01 CAIR / End customer documentation QM  
3 QM 07 02 Homologations QM  
3 QM 07 03 Management of delivery process QM  
3 QM 07 04 Internal transfer documentation (Between sites) QM  
3 QM 07 05 Authorization To Ship QM  
2 QM 08 ADVANCED PRODUCT QUALITY PLANNING (APQP) QM
3 QM 08 01 APQP Governance QM  
3 QM 08 02 DFMEA (Design Failure Mode & Effects Analysis) QM  
3 QM 08 03 PFMEA (Process Failure Mode & Effects Analysis) QM  
3 QM 08 04 Control Plan QM  
3 QM 08 05 Inspection Plan QM  
3 QM 08 06 SPC (Statistical Process Control) QM  
3 QM 08 07 PPAP (Production Part Approval Process) QM  
3 QM 08 08 MSA (Measurement System Analysis) QM  
1 STP Source to Pay Sourcing and Procurement
2 STP 01 STP Master Data Sourcing and Procurement
3 STP 01 01 Vendor Master Sourcing and Procurement   1 1 1 In Scope
link to Supplier Management Ariba (A1 quick wins)
3 STP 01 02 Intercompany related business activities (Transfer price determination, Valuation of purchased material and services as well as assets Sourcing and Procurement         Out of Scope    
3 STP 01 03 Product catalogues that are related to product specifications and related price / cost determination Sourcing and Procurement         Out of Scope    
3 STP 01 04 Material Master Sourcing and Procurement   1 1 1 In Scope
link to PLM
3 STP 01 05 Source list Sourcing and Procurement   1 1 1 In Scope
 
3 STP 01 06 Quota arrengements Sourcing and Procurement   1 1 1 In Scope
 
3 STP 01 07 Product catalogues Sourcing and Procurement         Out of Scope
 
3 STP 01 08 Purchasing info records Sourcing and Procurement   1 1 1 In Scope
 
3 STP 01 09 Service Master Sourcing and Procurement   1 1 1 In Scope
 
3 STP 01 10 Pricing Conditions Sourcing and Procurement   1 1 1 In Scope
 
2 STP 02 Supplier Management Sourcing and Procurement
3 STP 02 01 Supplier Registration Sourcing and Procurement   1 1 1 In Scope Excel/Word Process executed in Ariba (A1 – quick wins)
3 STP 02 02 Supplier Evaluation/Qualification Sourcing and Procurement   1 1 1 In Scope Lotus Notes SMIS:  QM TBC Process executed in Ariba (A1 – quick wins)
3 STP 02 03 Supplier Performance/Monitoring Sourcing and Procurement   2 2 2 In Scope
Process executed in Ariba (A1 – quick wins)
3 STP 02 04 Supplier Rationalisation Sourcing and Procurement   2 2 2 In Scope
Process executed in Ariba (A1 – quick wins)
3 STP 02 05 Supplier Discovery Sourcing and Procurement   2 2 2 In Scope NO Process executed in Ariba (A1 – quick wins)
3 STP 02 06 Supplier Risk Sourcing and Procurement   2 2 2 In Scope TBC ARIBA: other 3rd party data sources /A4
2 STP 03 Sourcing Sourcing and Procurement
3 STP 03 01 Opportunity Identification Sourcing and Procurement   1 1 1 In Scope TBC Process executed in Ariba (A1 – quick wins)
3 STP 03 02 Opportunity Assessment Sourcing and Procurement   1 1 1 In Scope TBC Process executed in Ariba (A1 – quick wins)
3 STP 03 03 Opportunity Evaluation Sourcing and Procurement   1 1 1 In Scope TBC Process executed in Ariba (A1 – quick wins)
3 STP 03 04 Requirements Definition Sourcing and Procurement   1 1 1 In Scope Excel :  WORD Process executed in Ariba (A1 – quick wins)
3 STP 03 05 Category Analysis Sourcing and Procurement   1 1 1 In Scope
Process executed in Ariba (A1 – quick wins)
3 STP 03 06 Sourcing Strategy Sourcing and Procurement   1 1 1 In Scope
Process executed in Ariba (A1 – quick wins)
3 STP 03 07 Supplier Selection Sourcing and Procurement   1 1 1 In Scope
Process executed in Ariba (A1 – quick wins)
3 STP 03 08 Sourcing Event Sourcing and Procurement   1 1 1 In Scope MS OFFICE Process executed in Ariba (A1 – quick wins)
3 STP 03 09 Sourcing Evaluation Sourcing and Procurement   1 1 1 In Scope MS OFFICE Process executed in Ariba (A1 – quick wins)
3 STP 03 10 Sourcing Award Sourcing and Procurement   1 1 1 In Scope MS OFFICE Process executed in Ariba (A1 – quick wins)
3 STP 03 11 Continuous Category Analysis Sourcing and Procurement   1 1 1 In Scope
Process executed in Ariba or BI (A2 – MVS)
integration Ariba <–> SAP BI to be clarified
Requirement: report in total spend
2 STP 04 Contract Management Sourcing and Procurement
3 STP 04 01 Contract Creation (Legal) Sourcing and Procurement   1 1 1 In Scope
Process executed in Ariba (A1 – quick wins)
3 STP 04 02 Contract Creation (Operational) Sourcing and Procurement   1 1 1 In Scope
Integration to contract management in Ariba (A1 quick wins)
3 STP 04 03 Advanced Purchasing (long lead time items planning, Doc 3) Sourcing and Procurement   1 1 1 In Scope   Integration to contract management in Ariba (A1 quick wins)
3 STP 04 04 Contract Execution Sourcing and Procurement   1 1 1 In Scope
Integration to contract management in Ariba (A1 quick wins)
3 STP 04 05 CDRL Management Sourcing and Procurement 024046 CDRL Management 1 1 1  
Integration to contract management in Ariba (A1 quick wins)
3 STP 04 06 Contract Monitoring/Compliance Sourcing and Procurement   1 1 1 In Scope
Integration to contract management in Ariba (A1 quick wins)
3 STP 04 07 Contract Closure Sourcing and Procurement   1 1 1 In Scope
Integration to contract management in Ariba (A1 quick wins)
3 STP 04 08 Contract Renewal Sourcing and Procurement   1 1 1 In Scope
Integration to contract management in Ariba (A1 quick wins)
2 STP 05 Product Procurement Sourcing and Procurement
3 STP 05 01 Manage frame contract incl. supplier collaboration Sourcing and Procurement   1 1 1 In Scope SupplyON
SCM
Integration to supplier collaboration in Ariba (A2 MVS)
3 STP 05 02 Purchase Requisition Sourcing and Procurement   1 1 1 In Scope
Integration to supplier collaboration in Ariba (A2 MVS)
3 STP 05 03 Purchase order  Sourcing and Procurement   1 1 1 In Scope
Integration to supplier collaboration in Ariba (A2 MVS)
3 STP 05 04 Scheduling Agreements Sourcing and Procurement   1 1 1 In Scope
Integration to supplier collaboration in Ariba (A2 MVS)
3 STP 05 05 Manage Stock Transfer Orders Sourcing and Procurement   1 1 1 In Scope
Integration to supplier collaboration in Ariba (A2 MVS)
3 STP 05 06 Manage Disbursements  Sourcing and Procurement     1 1 In Scope
related to advance payment to suppliers
to be alligned with the RTR team
3 STP 05 07 Subcontracting Sourcing and Procurement   1 1 1 In Scope
Integration to supplier collaboration in Ariba (A2 MVS)
3 STP 05 08 Contract Manufacturing Sourcing and Procurement         Not in Scope
 
3 STP 05 09 Goods Receipting MEL   1 1 1 In Scope
Integration to supplier collaboration in Ariba (A2 MVS)
3 STP 05 10 Service Entry Sheets Sourcing and Procurement   1 1 1 In Scope not set up Integration to supplier collaboration in Ariba (A2 MVS)
3 STP 05 11 Vendor returns MEL   1 1 1 In Scope
Integration to supplier collaboration in Ariba (A2 MVS)
3 STP 05 12 Vendor Rebates Sourcing and Procurement     2 2 In Scope TBC  
2 STP 06 Non-product procurement Sourcing and Procurement
3 STP 06 01 Procurement of indirect material Sourcing and Procurement         Out of Scope    
3 STP 06 02 Procurement of services Sourcing and Procurement         Out of Scope    
3 STP 06 03 Procurement of assets Sourcing and Procurement         Out of Scope    
3 STP 06 04 Catalogue Management Sourcing and Procurement         Out of Scope    
2 STP 07 Procurement of spare parts Sourcing and Procurement
3 STP 07 04 Perform special shipments  AFS   1 1 1 In Scope    
2 STP 08 Invoicing Sourcing and Procurement
3 STP 08 01 Invoice processing     RTR   1 1 1 In Scope

SupplyON
Integration to Supplier collaboration / invoicing in Ariba
3 STP 08 02 Self billing invoicing RTR   1 1 1 In Scope TBC  
Process Master List
Level End to End Workstream Process sub area
1 OMF OMF  Order Management & Fulfillment
2 OMF OMF 01 OMF Master & Organizational Data
3 OMF OMF 0101 Master Data – Project structure
3 OMF OMF 0102 Master data – Sales Order and Customers
3 OMF OMF 0103 Organizational Data 
2 OMF OMF 02 Opportunity Management
3 OMF OMF 0202 Manage Prospect
3 OMF OMF 0203 Create Opportunity & enhance information
3 OMF OMF 0206 Decision to proceed
2 OMF OMF 03 Bid Management
3 OMF OMF 0301 Research and Planning
3 OMF OMF 0302 Receive formal Request from Customer
3 OMF OMF 0303 Confirm availability to deliver
3 OMF OMF 0304 Quotation
3 OMF OMF 0305 Pricing
3 OMF OMF 0306 Risk Management
3 OMF OMF 0307 Decision to proceed
3 OMF OMF 0308 Documentation preparation and submission
2 OMF OMF 04 Sales Order & Contract Management
3 OMF OMF 0401 Contract Management
3 OMF OMF 0402 Link Sales Order to other objects
3 OMF OMF 0403 Replacement and Returns process
3 OMF OMF 0405 Sales Order Management
3 OMF OMF 0406 Order Credit Management
3 OMF OMF 0407 Delivery & Confirmation (from Sales Order)
3 OMF OMF 0408 Billing (From Sales Order)
3 OMF OMF 0409 Special billing scenarios
3 OMF OMF 0411 Reporting 
2 OMF OMF 05 Order fulfillment using Project
3 OMF OMF 0501 Project Creation from Master Template
3 OMF OMF 0502 Add Product to Project (BoM assignment)
3 OMF OMF 0503 Add additional activities to Project
3 OMF OMF 0504 Rough Cut Capacity Planning for projects
3 OMF OMF 0505 Risk Management during execution
3 OMF OMF 0506 Project Monitoring and Reporting (quality, cost, delivery & revenue)
3 OMF OMF 0507 Order Change Management
3 OMF OMF 0508 Delivery & Confirmation (from Project)
3 OMF OMF 0509 Billing (partial milestone, change and full; from Project)
3 OMF OMF 0510 Special billing scenarios (Project)
3 OMF OMF 0511 Product Introduction Management
3 OMF OMF 0512 Handover to Customer
3 OMF OMF 0513 Handover to AfterSales Team
3 OMF OMF 0514 Settlement of Project
3 OMF OMF 0515 Project Closure
3 OMF OMF 0516 Other Projects Planning and Execution
3 OMF OMF 0517 Warranty process (plan versus actual)

Telecommunications User Experience Platform Architecture Design to prevent churn:

SAP Rapid Data Migration Architecture

2 thoughts on “S/4 HANA, Security Strategy, SEM Banking Projects

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.