Security Compliance

Return To SAP Homepage Join The SANS Community

Role Description

The Security Compliance role ensures the confidentiality, integrity, and availability of SAP systems and data, protecting critical business processes and maintaining organizational reputation. Compliance professionals safeguard against legal, regulatory, and reputational risks by conducting audits, monitoring controls, and communicating compliance posture effectively.

BLUF

Security Compliance professionals require a progression from foundational security knowledge (T1) through applied auditing and reporting (T2–T3), and ultimately into strategic oversight of compliance frameworks and risk communication (T4–T5). This roadmap provides a clear path to develop the skills necessary to protect both systems and business trust.

Development Roadmap with TKS Alignment

T1 – Novice (Foundations)

Course: SEC275 / SEC401. Aligned TKSs: 101 Security Fundamentals, K0104 NIST Cybersecurity Framework (introductory), K0676 Cybersecurity Laws & Regulations (awareness level), K0705 Policy Development (basic awareness)

Slide 1 of 2
SEC275: Foundations: Computers, Technology, & Security
Beginner
SEC275Cyber Defense
GIAC Foundational Cybersecurity Technologies (GFACT)
38 CPEs / 38 Hours (Self-Paced)
Labs: 90 Hands-On Labs
View course details Register
Slide 2 of 2
SEC401: Security Essentials - Network, Endpoint, and Cloud
Essentials
SEC401Cyber Defense
GIAC Security Essentials (GSEC)
6 Days (Instructor-Led)
46 CPEs / 46 Hours (Self-Paced)
Labs: 20 Hands-On Labs
View course details Register

T2 – Practitioner (Applied Knowledge)

Course: LDR433. Aligned TKSs: K0087 Audit Standards & Frameworks (applied awareness), K0701 GRC Frameworks, S0375 Support Regulatory Reporting, T0175 Prepare Technical Reports, T0322 Conduct Audits of Information Systems (introductory level)

LDR433: Managing Human Risk

LDR433Cybersecurity Leadership

SANS Security Awareness Professional (SSAP)
3 Days (Instructor-Led)
18 CPEs / 18 Hours (Self-Paced)
Labs: 6 Hands-On Labs

View course details Register

T3 – Advanced (Specialized Knowledge)

Course: LDR514. Aligned TKSs: K0087 Audit Standards & Frameworks (advanced application), T0323 Develop & Manage Audit Programs, T1450 Interpret Regulatory Requirements, S0058 Skill in Preparing Findings Documentation

LDR514: Security Strategic Planning, Policy, and Leadership

LDR514Cybersecurity Leadership

GIAC Strategic Planning, Policy, and Leadership (GSTRT)
5 Days (Instructor-Led)
30 CPEs / 30 Hours (Self-Paced)
Labs: 32 Hands-On Labs

View course details Register

T4 – Expert (Enterprise Integration)

Course: SEC566. Aligned TKSs: T1451 Audit Security Controls, T1453 Monitor Compliance Posture, T1396 Oversee Independent Cybersecurity Audits (applied at enterprise level), K0701 GRC Frameworks (enterprise integration)

SEC566: Implementing and Auditing CIS Controls

SEC566Cybersecurity Leadership

GIAC Critical Controls Certification (GCCC)
5 Days (Instructor-Led)
30 CPEs / 30 Hours (Self-Paced)
Labs: 23 Hands-On Labs

View course details Register

T5 – Expert / Mentor (Strategic Oversight & Defense Leadership)

SEC566: Implementing and Auditing CIS Controls

SEC566Cybersecurity Leadership

GIAC Critical Controls Certification (GCCC)
5 Days (Instructor-Led)
30 CPEs / 30 Hours (Self-Paced)
Labs: 23 Hands-On Labs

View course details Register

SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals

Security Compliance

Role Description

BLUF

Development Roadmap with TKS Alignment

T1 – Novice (Foundations)

SEC275: Foundations: Computers, Technology, & Security

Quick view

SEC401: Security Essentials - Network, Endpoint, and Cloud

Quick view

T2 – Practitioner (Applied Knowledge)

LDR433: Managing Human Risk

Quick view

T3 – Advanced (Specialized Knowledge)

LDR514: Security Strategic Planning, Policy, and Leadership

Quick view

T4 – Expert (Enterprise Integration)

SEC566: Implementing and Auditing CIS Controls

Quick view

T5 – Expert / Mentor (Strategic Oversight & Defense Leadership)

SEC566: Implementing and Auditing CIS Controls

Quick view