Integrated Risk Management
Through the application of technology and automation, we'll help you manage your risks efficiently and effectively across the entire enterprise.
Identity and Access Management
We'll help you ensure everybody within your organisation has access to the right systems and data, for the right reasons, and at the right time.
Cyber & Application Security
Our experts will uncover security weaknesses within your security design and business-critical applications. Helping you protect your organisation from both internal and external threats.
Bedrock Managed Service
Scalable support and on-demand expertise that seamlessly integrates with your existing operations.
About us
A group of passionate individuals with a shared purpose to help the world's leading companies embrace best practices for GRC and risk management.
Turnkey's strategic partner network consists of selected organisations that complement our capabilities.
Corporate Social ResponsibilityCSR
We are committed to being agents for change through our Climate Action Plan, championing diversity in our workplaces, and more.
Get in touch
We have operations in all corners of the globe, so see which office is nearest to you and connect with them.
We have operations in all corners of the globe, so see which office is nearest to you and connect with them.
Webinars & eBooks
All of Turnkey's webinars, guides and other insights available in one place.
Read the latest insights from our experts on GRC and risk management, covering the latest industry topics.
Press Coverage
See all the publications where Turnkey, our experts and our successes have been noted.
Key events
See the key industry conferences on GRC, SAP security and risk management which we are attending.
Case Studies
Client satisfaction is of the utmost importance to us, and we strive to constantly deliver above expectations, going the extra mile at every opportunity.
13 March 2024

Why security should take centre stage in your S/4HANA migration

If you have not already started your migration towards S/4HANA, then you will no doubt be starting it very soon. But there is much more to this migration than meets the eye.

Transitioning to a new security model at the same time is not just a 'golden' opportunity, but it’s a critical demand. Only then can your organisation take full advantage of new ways of working, and of the flexibility and agility that S/4HANA can provide. And of course, at the same time, you can give yourself the confidence that your data, systems, and applications are as safe as they can be.

So why should you make the effort to prioritise security in your S/4HANA migration plans?

You can unlock more modern working models 

The importance of access roles and security stretches far beyond roles and users, and the S/4 system requires a rethink in how they are defined and applied. The existing roles you have in your ECC system are not immediately compatible with the Fiori interface within S/4HANA.

This is because you must make all your transactions visible to Fiori - they are not there by default - and some transactions have now been deprecated. Even if you want to use the old transactions, you either must push them to the GUI (never a fun job!) or take the time to make them visible in Fiori. Either way, it is an unnecessary job that can be dispensed with by reprovisioning suitable access roles and security for the new system.


You can get the best from Fiori 

Moving into a Fiori-based landscape means that you will have access to a single app that will show you what you need to do, instead of you having to work it out for yourself. Fiori can present you with the various scenarios of what you can do and give you the ability to take quick and decisive actions.

Additionally, the process flow has also been improved in Fiori compared to ECC. For example, no longer will you have to create, change, and display sales orders in turn: instead, all three activities can be controlled within the Fiori app simultaneously under ‘manage sales order’. This represents a real step-change in how users interact with the system, and it is well worth investing the time and resources into unlocking these benefits fully.




You can maximise your investment

Connected to the previous point, your migration represents a major investment in the technological future of your organisation - so it is vital that you make sure you get your money’s worth. Fiori should be front and centre of your new SAP system, so that you are changing the bodywork of the car as well as the engine underneath it, making sure your users get a platform that both looks and performs better.

Alongside this, it is essential that you make sure your controls are fit for purpose, so that they're right sized for user needs, and act as enablers rather than blockers. That way, you avoid generating unnecessary frustration among employees that can easily come with a brownfield migration that overlooks the new processes available.


You can reduce your levels of human risk

In an era where many security issues and incidents are still the result of human behaviours, it is not realistic to expect human risk levels to be reduced to zero. However, they can still be minimised to a great degree with the help of automation, especially if you have embraced the new processes within S/4HANA.

We are finding that many businesses doing brownfield migrations end up creating more security incidents, because employees start to get frustrated with burdensome access controls and look for workarounds that can lead to vulnerabilities being introduced. Implementing security roles and authorisations correctly can help you strike the right balance between protection and productivity, and enables access to be properly managed for efficiency, and monitored for compliance.


In summary: a bright outlook with Fiori 

With a proper, security-focused migration to S/4HANA, you will end up with an environment that is fully functional, finely tuned and that leverages all the benefits of the new interface and processes. Furthermore, you will have an environment that users feel more positive about using and feel empowered to do so correctly and efficiently. The fact that this migration will also massively ramp up your security protection is the icing on the cake.


Find out more about enabling business success with a security-first S/4HANA migration in our upcoming webinar. Take a closer look and sign up here.