Can your ERP really be compliant if you only look at one system at a time? In this episode with Infosys, we explore how cross-system risks, dynamic access decisions, and integrated governance are reshaping segregation of duties in hybrid ERP landscapes. ===== The future of ERP is no longer just about moving systems to the cloud, it’s about how businesses manage risk in an increasingly connected, automated, and hybrid world. In our latest episode, we sit down with Nishad Showkath from Infosys to unpack why segregation of duties needs a rethink when business processes stretch across on-premise systems, cloud applications, APIs, and automated workflows. Traditional SoD was built for a simpler era, but today’s ERP landscape is far more complex, and risks don’t always stay inside one system. What does that mean in practice? It means organizations can no longer rely on system-by-system compliance checks and assume the full process is secure. A user may create something in one platform, approve it in another, and complete the workflow somewhere else entirely, creating hidden cross-system risks that older approaches miss. Nishad shares why identity silos, fragmented risk libraries, and disconnected provisioning tools make this challenge even harder, and what companies need to do to build a more complete view of access and control. We also talk about what comes next: dynamic access decisions, automated risk analysis, continuous monitoring, and integrated governance that can follow the business process instead of just the individual application. Nishad explains how AI, machine learning, and identity access management tools are shaping the next phase of SoD, and why the future of ERP security will depend on treating enterprise risk as one connected ecosystem rather than a set of isolated systems. Download Episode Transcript Useful Links: SAP Cloud ERP Follow Us on Social Media! SAP S/4HANA Cloud ERP: LinkedIn ===== Guest: Nishad Showkath, Senior Principal Consultant, Infosys Consulting Nishad is a Senior Security/GRC architect with overall 20+ years of experience in SAP Security, GRC access control, Process Control, SAP ITGC & Compliance Assurance. He specializes in Authorization design, configuration, and implementation of solutions in the SAP Authorization & GRC area to help customers in their digital transformation journeys and build robust, secure authorization concepts in SAP applications. Nishad’s LinkedIn Host 1: Richard Howells, SAP Richard Howells has been working in the Supply Chain Management and Manufacturing space for over 30 years. He is responsible for driving the thought leadership and awareness of SAP’s ERP, Finance, and Supply Chain solutions and is an active writer, podcaster, and thought leader on the topics of supply chain, Industry 4.0, digitization, and sustainability. Follow Richard Howell on LinkedIn and X Host 2: Oyku Ilgar, SAP Oyku Ilgar is a marketer and thought leader specializing in SAP’s digital supply chain and ERP solutions since 2017. As a marketer, blogger, and podcaster, she creates engaging content that highlights innovative SAP technologies and explores key topics including business trends, AI, Industry 4.0, and sustainability. She holds dual bachelor’s degrees in Finance & Accounting and English Translation, along with a master’s degree in Business Administration and Foreign Trade, specializing in marketing. With her background in digital transformation, Oyku communicates technology trends and industry insights to help professionals navigate the evolving business landscape. Oyku’s LinkedIn and SAP Community ===== Key Topics: Segregation of duties, Future of ERP, Cross-system risk, Hybrid ERP, SAP Security, GRC, Identity access management, Automated risk analysis, Continuous monitoring, Integrated governance.
