Xpandion Blog

  • Home
    Blog Home This is where you can find all the blog posts throughout the site.
  • Tags
    Tags Displays a list of tags that have been used in the blog.

How to Become a Successful Security/Authorization Manager

  • Font size: Larger Smaller
  • Hits: 5657
  • Print

The more Security and SAP Licensing Managers that Xpandion works with, the more confirmation we receive that there is a distinct difference in the actions taken by successful managers vs.  unsuccessful managers.  Using ProfileTailor Dynamics/ LicenseAuditor these successful managers implement specific action items which are the only ones possible to increase ROI and decrease TCO in the world of SAP.

Part 1 - Immediate Impact Projects

No matter what company type, the underlying attitude that successful managers share is the focus on 'Immediate Impact' types of projects at the onset of their position. The most obvious and important example would be to assess and eliminate as many power users as possible throughout the organization. Using ProfileTailor Dynamics one can quickly and easily remove the “SAP_ALL” profile and create a dedicated authorization profile for each power user just by using a few clicks of a button. An alternate example would be to implement a more simple set of between 5-10 rules of (for example)-Segregation of Duties.

This type of task can easily be reduced to only 2 days worth of work and immediately position the Security/Authorization Manager as an initiator of successful projects resulting in reliability, increased security and an almost immediate budgetary impact.   Upon completion- the ProfileTailor Dynamics system can track SoD violations immediately-That means any unusual behavior is reported via an alerts as it happens.

Part 2 - High Impact Low Risk

Successful managers try to leverage what they can from their resources.  Let’s assume that the organization is using either SAP-HR or Active Directory to manage their employees. Using ProfileTailor Dynamics, managers can efficiently implement PTD’s built-in, ready-to-use workflow process for an authorization request.  The immediate impact on the entire organization is to thoroughly reassess and streamline resources all the way up to Auditors and top-managers level.  To put it in the simplest of terms, this project stands to save a potential of thousands of man hours over the course of the process.

Part 3 - Focus on the Money 

Successful managers always focus on decreasing cost. In today’s climate, it’s impossible to overlook the financial impact and ROI (or lack thereof) from each project.   Project must be initialized with the intent of decreasing TCO built in.

One increasingly important and often overlooked project in this all too important “Decrease TCO ” arena is simple.  The necessary elimination of unused, dormant SAP accounts.  To do this, the organization must reclassify their SAP licenses and reduce the numbers of roles in the organization – the main functionalities in  ProfileTailor Dynamics/LicenseAuditor.  Using this software, which is easily justifiable to management given the immense long term savings, offers the highest impact on ROI.

Immediate Decrease of TCO + Increasing ROI = Indispensable Manager

These projects are especially successful in SMEs as upper management in smaller and medium sized enterprises are much more involved in lower management level positions.

The CEO might see their Security/Authorization Manager every day.  Because of this, the resulting impact of the 3 projects outlined above is much more visible to upper management.  Since the actual implementation time is fast and the impact to the bottom line is practically instant, the Security/Authorization Manager is immediately able to show their value to the organization and in these tough economic times, showing your value by increasing the company's is priceless.


Yoav Michaeli joined Xpandion in 2008 as a team leader, and in 2010 Mr. Michaeli began managing the entire Research & Development group of the company. Prior to joining Xpandion, Mr. Michaeli served in an elite technological unit of the Israeli Defense Forces as a team leader for various key military projects. Among other achievements, he was instrumental in pioneering the use of advanced .NET technologies for large scale distributed systems. Mr. Michaeli is an expert in programming, agile development, application security and specialized programming techniques.


  • No comments made yet. Be the first to submit a comment

Leave your comment

Guest 24/06/2017


in XpandionPosted by Yoav Michaeli

Optimize Licensing Costs. Increase Security

These are amongst some of the most worrying words that enterprises and managers can hear.  And, yet, they are a part of day to day terminology- whether whispered behind  soundproof board room doors, discussed openly by upper management or colleagues addressing them casually over the wate...
in XpandionPosted by Yoav Michaeli

Office Space- A funny movie about hackers or a real life security threat?

Though most SAP programmers are reliable, serious professionals, there are a few who are intent on harming their organizations – and because of these few, we are rightfully afraid of the power of SAP Programmers. They almost always have a significant number of authorizations in the production system...
in Security & AuthorizationsPosted by Yoav Michaeli

Who Authorized It?!

"Who authorized it?" is definitely the most asked question following a fraud event or leakage of information.  

in Security & AuthorizationsPosted by Dror Aviv

Get Rid of Power Users Once and For All

Organizations have Power Users in all systems (at least I have not yet come across an organization without them). Power Users hold a vast amount of authorizations, or even full authorizations in specific applications.

in Security & AuthorizationsPosted by Yoav Michaeli

Discover How Simple It Can Be To Manage a Role Catalog

One of your accounting clerks just left on maternity leave (congratulations to Sally). Another employee is replacing her and thus has the new responsibility of performing Invoice Reconciliation (good luck to John). To perform this task, John needs to open a new request in the portal for the proper a...



157 Yigal Alon Street,

Tel Aviv 67443, Israel


US Office


33 West 19th Street, New York,

NY 10011, USA


India Office


C 103, Akruti Orchid Park, Andheri-Kurla Road,

Andheri East, Mumbai, India