Hi All, We have a requirement to profile the data and implement scorecards based on the required business rules for the SAP HR data (Workday). We have a concern about how to secure the HR data as data would be a most sensitive data like SSN, Phone Number etc.,.
As part of security we care considering below additional steps to keep secure the data. Please review and advise if we have any best practices in this case and best possible approach to full fill this requirement.
1. Create dedicated Communication/System user. For Ex in our case: sapserviceqishr.
2. Build new security Roles to use only for HR Project.
3. Create separate database to store failed data.
4. If data comes from file systems, anyhow HR team could manage secure FTP locations.
But the profiled data will be stored in the SAP IS repository database. With the above actions we can secure in application level (from IS) but not in IS repo database level. Do we have encryption mechanism to protect that data? or Do we have any masking options with in DB level or else where? Please advise HOW we can secure this data?
Thanks
Venky