ERP Maestro


Winterhawk is a Global Platinum-level reseller and implementer of ERP Maestro. It’s a solution we highly recommend for clients who are seeking a fast-to-implement solution which is also cost-effective. Our clients also love its ease of use and the fantastic dashboards.

ERP Maestro is a cloud-based Software-as-a-Service (SaaS) solution, enabling organisations to gain visibility into SAP user access risks. It provides the ability to identify, rectify and prevent Segregation of Duties (SoD) violations, monitor sensitive access, enable emergency access management, automate provisioning and reduce unauthorised access.

• A monthly Opex subscription model (includes hosting, implementation and ongoing maintenance and application support)
• Aimed at organisations seeking to control their SAP Access Controls and reduce the risk of audit failures and support remediation.
• ERP Maestro’s  Risk definition and Rulebook has been validated with Audit firms such as Deloitte, PWC, KPMG & Grant Thornton.
• ERP Maestro is certified for integration with SAP applications (ECC, S/4HANA and Success Factors etc.).

Interested in learning more about ERP Maestro?

Drop us an email at – or alternatively:

Contact us to arrange a live 1:1 demo

Risk Management Dashboard

The Risk Management dashboard within Access Analyzer gives summary snapshots, providing a high-level view of the state of risk within an organisation’s SAP landscape.


The risk snapshots are multi-layered; they can be drilled down into for a greater level of detail.

Functional & Technical Capabilities

Features and Benefits

  • Quickly see all conflicts ranked by risk level, what’s causing the risk, and how many users and roles are impacted by existing SoD conflicts.
  • Actively monitor the base of SAP users with access to sensitive functionality for audit and operational purposes.
  • At-a-glance view of all items to review, with one-click approval, rejection or delegation actions.
  • Rapidly generate web-based dashboard reporting with drill-down capabilities.
  • Simulate Role and User modifications to validate the desired impact on Risk.
  • Enables automatic removal of Sensitive Access.
  • Give emergency access to pre-approved users when  temporary authorisations are required to process transactions.
  • Accelerate remediation through analysis and recommendation reports.
  • Generate complete and accurate documentation during emergency access from granting to deprovisioning.
  • Administrators can create and configure new reviews, manage reviewers and assign due dates.

Solution Insight

Linda Hewison Lars Andersson Winterhawk Co Owner. Responsible for Service Delivery, Training and Education of SAP GRC and Security Consultants

Linda Hewison, CFO

Large enterprises, will typically purchase SAP Access Control to gain control over sensitive access and segregation of duties. As a consulting firm, we noticed a gap where medium-sized enterprises running SAP were unable to justify the cost of a full enterprise edition of Access Control. So what does a medium-sized enterprise running SAP do, especially when they have an audit team telling them to provide assurance over user access? Our answer is typically ERP Maestro.

Our clients have all been delighted with the speed to get up and running, and the fact that the price includes implementation, ongoing support, hosting and training. The business-friendly language is often commented upon, along with the out-of-the-box reporting.

Credibility is key. There are other GRC solutions for SAP on the market, but none of them are used by the leading Audit firms – having confidence in the solution you procure is vital.

Implementation & Support

ERP Maestro can be provided by Winterhawk for a low-cost subscription, and implemented within a matter of days.

Packaged within the overall cost is:

  • Cloud Hosting Included
  • Implementation Included
  • 24/7 Application Support Included
  • Maintenance Included
  • End-User Training Included
  • Backed by audit and industry expertise
  • Secure access anytime, anywhere from any device

Client Testimonials

“Using Access Analyzer, we were able to fix almost 97% of the segregation of duties conflicts we had in SAP since starting with ERP Maestro. We now run it monthly to ensure the environment remains clean and to catch new conflicts.”

Manu Budhati – Manager SAP Applications, PeroxyChem

“We signed an agreement and were up and running on a fully functioning SOD analyser in probably less than 40 man hours.
Amazing product and a great example of what’s possible when you embrace the cloud.”

Chad Anderson – VP and CIO, Del Monte Foods Inc.

“We have a very clear understanding of the segregation of duties conflicts that we have. We also have a very precise ranking of those conflicts, which allows us to mitigate those problems and have a plan that attacks the most important issues first.”

Edgar Suris – Director of Business Applications, FARO Technologies

“To date, we’ve been able to reduce our critical Segregation of Duties (SoD) conflicts by over 80% and our high SoD conflicts by over 60%. We’ve also been able to formally document our mitigating controls within the tool, which is being relied upon by our external auditors.”

Jeff Davis – Associate Director of Global IT Security & Risk Compliance, TYCO

“It was a great solution for us and gave us that visibility within two weeks to see exactly what we couldn’t see before.”
Kevin Lester – SAP Integration Lead, Dominion Diamond

“It makes the difference between having a work-life balance and spending your life staring at spreadsheets for hours and hours.”
Carol Chapman – Sr. Director SAP Quality Unit, American National Insurance Company (ANICO)

“I can now run the analysis and have
an answer to what issue is causing access restriction down to the t-code and authorisation object level. Before ERP Maestro, this was not possible.”

Arnaud Seigle-Goujon – Corporate Director Internal Audit, Cascades

Get in touch...

Get in touch to schedule a live demo of ERP Maestro.