This sample audit report provides management an assessment of its current state and associated SAP change management risks.
The objectives of the sample audit were to: conduct a high-level initial risk assessment to determine areas of potential risk focusing on the SAP change management process; perform additional detailed audit procedures for the risks, as determined by company internal audit; and assess whether proper SAP security controls are enabled to mitigate the risk of unauthorized promotion of changes into the production environment.
Methodologies & Models
Change Management Capability Maturity Model (CMM)
Policies & Procedures
IT Change Management Policy