A framework for building and managing secured ERP landscape

摘要

Recently many organizations in the world are facing the need to implement or have already been using an ERP system. Successful implementation and further maintenance of such software is extremely critical because it would not only be a base for managerial decisions and a cockpit to control key business processes but also the main source of audit trails for compliance issues. Thus indigested implementation of such system could cause not only budget overflows on consulting and maintenance issues but also lead to a bankruptcy is case, for example, of incorrect business processes adjustment or data leakage. Thus despite of business specifics related to security investments providing information security of the ERP landscape must be of the highest concerns for an enterprise on all the stages of Software Life Cycle Process. The purpose of this paper is to introduce a framework which should help to reduce potential loss on security related incidents and provide an economically reasonable level of security assurance and should also help enterprises to save on additional maintenance cost.