04 Mrz SAP Self-Assessment Level 1 by lmswords in Comments 1. Our SAP systems are “internal only”. Their exposure to outside attackers is low/zero. 5 = fully agree 4 = mostly agree 3 = neither agree nor disagree 2 = mostly disagree 1 = fully disagree None 2. If only the production system has critical data, it’s enough to secure only those production systems. 5 = fully agree 4 = mostly agree 3 = neither agree nor disagree 2 = mostly disagree 1 = fully disagree None 3. We have SAP security covered. We have a team/tool taking care of roles, profiles, SoD and GRC. 5 = fully agree 4 = mostly agree 3 = neither agree nor disagree 2 = mostly disagree 1 = fully disagree None Time's up