top of page

SAP Security-ITAR Compliance

Your business may need to have ITAR-like compliance on the product data as it develops or when security-sensitive business units are added. 

Why Security-ITAR

When you initially installed SAP, intellectual property was protected so you could access your intellectual property. Your business may need to have ITAR-like compliance on the product data as it develops or when security-sensitive business units are added. The security model needs to be updated to take into account new selection criteria.

Examples of the security model alignment with the new selection include:

  • Project or product name specific access 

  • Security clearance level access

  • Vendor or customer specific access

  • Business unit specific access

agile plm security ITAR

Challenges we Help you Solve:

  • Complexity of existing security model
     

  • Approach for transition without disruption – incremental deployment by user or criteria
     

  • Mass update of access control attributes

agile plm
  • Can you provide references from clients in our industry?
    Absolutely. We are happy to connect you with clients in your industry who can share their experience with our services.
  • What sets you apart from other managed services providers?
    We have a deep focus on SAP and Oracle EBS, with a team of certified experts possessing extensive experience in these systems. Our industry-specific knowledge and proactive approach to problem-solving help us deliver exceptional service and optimize your ERP investment.
  • How do you handle communication and issue escalation?
    We prioritize open and transparent communication. You'll have a dedicated account manager and access to our ticketing system for issue logging and updates. We also have clear escalation paths to ensure critical issues are addressed with the necessary urgency.
  • What is your pricing model? Are there any hidden costs?
    We offer flexible pricing models (e.g., tiered support, per-incident, subscription-based) to suit your needs. Our pricing is transparent, and we'll provide a detailed breakdown of all costs upfront, avoiding any surprises.
  • Do you offer database administration as part of your services?
    Yes, our team includes database administrators (DBAs) with expertise in the databases underpinning SAP and Oracle EBS (e.g., Oracle Database, SAP HANA, Microsoft SQL Server).
  • How do you stay up-to-date with the latest SAP/Oracle EBS releases and security patches?
    We closely monitor vendor updates, security bulletins, and industry best practices. Our team participates in ongoing training and maintains certifications to ensure their knowledge remains cutting-edge.
  • Can you support both our on-premises systems and our cloud-based applications?
    Yes, we specialize in managing hybrid environments and ensuring seamless integration between your on-premises ERP and cloud applications.
  • What are your guaranteed response times for critical issues?
    Our SLAs provide tiered response times based on issue severity. For critical issues impacting core operations, we guarantee a response time of [specify time, e.g., within 1 hour.
  • Do you offer 24/7 support? Is there an additional cost?
    We offer 24/7 support as an option. Costs depend on your chosen support package.
  • Can you provide proactive monitoring to prevent issues before they occur?
    Yes, our proactive monitoring tools continuously track system health, performance metrics, and security logs. We can identify potential issues early, often resolving them before they impact your business.
  • Do you help with user training and adoption?
    We provide user training resources and can develop tailored training programs based on your specific needs, ensuring your team maximizes their use of your ERP system.
  • What disaster recovery and backup procedures do you have in place?
    We work with you to design a robust disaster recovery plan tailored to your recovery time and recovery point objectives. This includes regular backups, offsite storage, and documented procedures for restoring your systems in case of an outage.
  • Do you have experience with data privacy regulations (e.g., GDPR, CCPA)?
    Yes, we can help you assess your compliance with data privacy regulations and implement controls to safeguard sensitive data.
  • How do you ensure the security of our ERP systems?
    We take a multi-layered approach to security, implementing firewalls, intrusion detection/prevention systems, regular vulnerability scanning, strict access controls, and data encryption. We also stay up-to-date with the latest security best practices.
  • Can you assist with compliance audits (e.g., SOX, PCI DSS)?
    Yes, we understand compliance requirements and can help you prepare for audits by ensuring proper configurations, documentation, and reporting in line with the relevant regulations.
  • Can you build and support integrations with our other business systems?
    Absolutely! We have expertise in developing integrations using various middleware and API technologies.
  • How do you handle customizations to our SAP/Oracle EBS systems?
    We carefully document all customizations and assess their potential impact during updates. We prioritize minimizing customization, using standard functionality where possible, and testing changes thoroughly in a sandbox environment before production deployment.
  • Do you have development capabilities for custom reports or functionalities?
    Yes, our team can analyze your requirements and develop custom solutions that seamlessly integrate with your ERP.
  • How does thrive.gs support customers who are subject to ITAR requirements?
    Code of Federal Regulations regarding ITAR states, “This information must be stored in such a manner that none of it may be altered, once it is initially recorded, without recording all changes, who made them, and when they were made." Implement change control on the product data and Restrict direct access to product data, development, and test environments. We employ “U.S. Persons” as defined by ITAR for all data management work. Data is never accessed by an unauthorized person or processed even in the United States or an offshore technology center. All data management, SAP configuration, and code development in executed by authorized US Persons following the company policies and procedures. In many cases, we work using company-provided laptops and corporate network access tools such as Citrix and VPN.
  • How does thrive.gs provide assurance to customers that it meets ITAR requirements?
    We ensure the record-keeping element of ITAR is in compliance. In the event of an audit, you will want to be able to produce records detailing all of your compliance efforts. This includes purchase orders, shipping documents, delivery receipts, notes, etc. (ERP) Address documentation for issues like training, hiring, foreign nationals, and the like (SAP) Make sure to include a record of all the entities that interact with your exports – freight forwarders, receiving agents, shipping companies, etc. (AVL/ASL in SAP) Documentation can (and should) include pre-sales investigation and customer communication as well as post-delivery follow-up. (CNM, Proj Mgmt, Cost Mgmt in SAP) Ensure strictly authorized access to all the record-keeping product documents stored in SAP Customer data is not only critical to the company’s competitiveness but also to national security and we do not take that lightly. All U.S. based thrive.gs employees undergo a background check before hiring and usually have a track record of working in high-security, NDA-based engagements where client Intellectual Property is always handled securely. Lastly, we encourage using company-provided laptops with traceability of email and file transfers. thrive.gs has an extensive ITAR client list of aerospace and aerospace-related companies.
  • How do ITAR requirements apply in the SAP?
    Defense products are subjected to International Traffic in Arms Regulations (ITAR) regulations requiring access controls for data handling visibility. SAP systems can implement controls over who can read, update or even search the data. SAP can employ control attributes (for example for security access level) or use membership in a user group as criteria. The group membership access can reflect internal projects and teams as well as external suppliers participating in a change or customers accessing documents and part lists. Suppliers, internal teams, and customers can collaborate while restricting the visibility of data items to only the ones assigned and relevant. ITAR - Items designed or developed for military or space applications EAR - Items designed or developed for commercial applications (alone or together with military/space applications, called dual use)
  • When does ITAR compliance matter?
    Your effort to remain in compliance with the ITAR will be a huge mitigating factor in the event of an audit. A company actively striving to operate within regulations is viewed in a different light than one that is unaware of, or unwilling to follow the rules. As an exporter, you are expected to maintain compliance with and knowledge of ITAR regulations. A formal export compliance policy and ongoing training are both highly recommended. Your company needs to have an ITAR compliance program, minimally consisting of a compliance manual, training, recordkeeping, and properly trained employees responsible for activities under the ITAR.
  • Can Agile PLM be customized to fit the unique needs of an organization?
    Yes, Agile PLM is a highly customizable platform that can be tailored to fit the unique needs of an organization. It allows users to easily modify and configure various aspects of the system to support their specific processes and requirements. This includes the ability to create custom fields, workflows, and user interfaces, as well as to integrate with other systems and tools used by the organization. By providing this level of flexibility, Agile PLM can be adapted to support a wide range of product development and lifecycle management processes.
  • How much do our services cost?
    The cost of our services varies depending on the specific features and options you choose. Contact our sales team for a customized quote based on your company's specific needs and requirements.
  • What is Agile PLM?
    Oracle Agile Product Lifecycle Management (PLM) is a software solution designed to help companies manage their product development process from concept to launch and beyond. It enables organizations to automate and streamline their product development process, and provides a central hub for managing product data and collaboration between different teams and departments. The main features of Oracle Agile PLM include: Product Data Management (PDM): This module allows companies to store, organize, and access all product-related data in a centralized location. It includes tools for managing engineering data, bills of materials, documents, and change management. Collaboration and Workflow Management: This module allows teams to collaborate and communicate more effectively by providing tools for managing tasks, approvals, and notifications. It also allows teams to define and manage their own workflows, helping to ensure that processes are consistent and efficient. Engineering Change Management: This module enables organizations to manage changes to product data throughout the product lifecycle. It includes tools for tracking, approving and implementing changes, and also helps teams to ensure that changes are properly communicated and implemented. Compliance Management: This module ensures that products comply with industry and regulatory standards. It includes tools for managing product certifications and compliance documentation and helps to ensure that products are designed and manufactured to meet the necessary requirements. Business Intelligence and Analytics: This module provides business insights and analytics which allow teams to make data-driven decisions. It helps to track and evaluate the performance of products, identify trends and opportunities, and forecast future demand. Oracle Agile PLM is widely used across different industries such as manufacturing, consumer goods, high-tech, and more. It allows teams to collaborate more efficiently, streamline workflows and improve the overall product development process. It is a comprehensive solution that enables companies to increase their competitiveness, reduce product development costs, and improve product quality.
  • How do I make sure a notification is being sent in Agile PLM 9.3.5?
    There is an option in javaClient. This is where we can check notifications are working or not.
  • Why do you need to upgrade to Agile PLM 9.3.6 or to the latest Agile PLM versions?
    First, businesses should upgrade since it includes numerous bug fixes and software enhancements and is a proactive business choice. If an upgrade is not possible owing to a lack of time or cash, organizations must engage break-fix help from industry professionals. thrive.gs provides both choices to meet your requirements. When you engage thrive.gs for break-fix support, you are guaranteed to obtain a number of advantages. thrive.gs supports the bug-fixing of Agile PLM 9.3.6 versions and provides extensive performance analysis through benchmarking. thrive.gs urges companies to upgrade due to its unparalleled advantages. Among these are delta training, load testing, benchmarking, and the upgrade of all thrive.gs add-ons. In addition, an update enables your users to receive Oracle's assistance, which is exclusive to the most recent versions of Agile PLM.
  • How does Agile PLM integrate with other enterprise systems?
    Agile PLM can integrate with a wide range of enterprise systems, such as enterprise resource planning (ERP) and customer relationship management (CRM) systems. This allows organizations to connect and share data between their PLM and other critical business systems, providing a more comprehensive and integrated view of product development processes. Some key benefits of this integration include improved data accuracy, enhanced collaboration and communication, and streamlined business processes. Many organizations use specialized integration software or services to facilitate the integration of Agile PLM with their other enterprise systems.
  • How do I boost the performance of Oracle Agile PLM?
    There is no one-size-fits-all answer to this question, as the optimal settings for a database or Weblogic server will vary depending on the specific application and usage patterns. However, some general tips for tuning databases and Weblogic servers include: 1. SGA & PGA 2. Heap Memory 3. Shared Pool 4. Large Pool 5. Buffer Cache 6. Redo Log Buffer 7. Java Pool 8. DB Connections
  • What is an item master in Agile PLM?
    The entire collection of Items - Parts, Documents, and other user-defined subclasses of the Items class is maintained under change control in the Agile system. This term is mostly used in PCM and PCM stands for Product Cost Management.
  • Where do I configure the port for the Agile PLM web client?
    To configure Agile with different port we need to update port in multiple locations: A. Login to webadmin with superadmin user B. Home >Summary of Environment >Summary of Servers >agile936-Agile C. Change http listener port D. Update the pcclient.jnlp, custom.jnlp, ext.jnlp & jndiurl.properties under application.ear
  • What is required to run Agile PLM Mobile?
    Agile users need to install a mobile app patch on agile to enable Agile functionality that supports the mobile app.
  • What is workflow in Agile PLM?
    An Agile PLM workflow is an automated sequence of statuses that a routable object follows as it goes through a company‘s change control process. When users create a routable object, they select a workflow from the list of workflows that are available for that routable object. A workflow can contain any number of statuses. Status names are editable, but their underlying status types are not. Only one status type, Pending, is required and this must be the first status in the workflow. Three status types—Submit, Review, and Released—may be used multiple times in a workflow, with unique names for each instance. Review and Released are the most versatile status types. Each and every status in a workflow‘s status list comprises status properties and criteria specific properties. Status properties define some specific actions that can be automatically triggered or manually performed—or both. Status properties determine what happens to the routable object when assigned people approve, reject, or even forget to review the routable object Criteria-specific properties are defined by filters called reusable criteria, which are created separately and stored in the Criteria node. Each individual status may have many criteria specific properties. Criteria-specific properties describe specific actions that are triggered (automatically, or they can be manually performed) if the routable object meets the conditions defined in the reusable criteria while the routable object is entering or exiting a status. Criteria Specific properties apply to individual statuses, not to the workflow as a whole.
  • What are some common Agile PLM issues that customers experience?
    Difficulties in navigating Agile PLM also hinder the resolution of challenges. Some common troubleshooting Agile PLM issues that customers face include: • Agile Service Stopped itself automatically after a short interval of time. • Not able to start Cluster • Not able to login to Java Client • Session Terminated Error • Reset the administrator password • Change database user Password when its expired • Unable to Run ACP • Unable to Run Acollect • Unable to Run Averify • File Manager Failed to start • Not able to Add/Get Files • Not able to view the Files using AutoVue thrive.gs employs its years of experience managing many Agile Platforms. Therefore, it has created a method for evaluating the health of your Agile PLM platform and architecture. Agile PLM Health Check from thrive.gs identifies the root causes of any performance issues and offers a comprehensive report with remedial recommendations. Support from thrive.gs develops a road map for resolving common difficulties and simplifies the troubleshooting process.
  • How does Agile PLM Health Check help to maintain the PLM system?
    Agile PLM Health Check is a powerful mechanism that helps you to keep track of your Oracle Agile PLM performance. Our Agile PLM Health check contains the following recommendations: 1. Hardware Review and Recommendations 2. Software Review and Recommendations 3. Validate Backup/Restore Mechanism 4. Averify Issues 5. Load Testing 6. Heap Memory 7. Thread Dump 8. JVM Settings 10. Tomcat Settings 11. Database Settings 12. Review Logs thrive.gs ensures that applying the above recommendations helps in identifying potential difficulties and implementing corrective measures.
  • How can I learn more about Agile PLM?
    You can learn more about Agile PLM by visiting our website and browsing our product information and resources. You can also contact our sales team to request more information.
  • Why do we need multiple FM servers?
    If the physical location of your offices varies, you'll need to deploy a separate FM server there. Workspace members can use DFM to store and share files.
  • What is redlining in Agile PLM?
    Red lining highlights the changes made to an object in red during a change process. ECOs, MCOs, PCOs and SCOs are the only changes that have redlining functions. You can redline BOM and AML data and attachments using an ECO. In addition, you can create change-controlled redline modifications to item attributes. You can redline AML data using an MCO. In addition, you can create change-controlled redline modifications to item attributes. You can redline site-specific BOM data and site-specific AML data using an SCO, but only against the latest released revision. You can redline prices using a PCO. Using the redlining feature, you can publish the price to your customers. For example, if you have renegotiated the price of a particular item with your supplier and you want to publish the new price, you can redline the price and route it through a PCO. You can redline an affected item by creating a change order, add an affected item in the affected item’s tab.Click on “Add”, search for an already existing object or create a new one. Select the row, Redlines for objects will show up in the lower half of the screen. Click on “Edit”, change the already existing values for attributes or add new values to the attributes, add components to Bom etc and click on save.All the changes done will be highlighted in “Red”. We have three more buttons other than “Edit”; “Redlines Only”,”undo All Redlines” and “More”.If you want to see the redlines tab in more screen mode, click on “More” and select “Full Display Mode”. To see only Redlines, click on “Redlines Only” and to undo the redlines, click on ”undo All Redlines”. These buttons are only present in the “Title Block” tab of Redlines.
  • Why should I use Agile PLM?
    Agile PLM is a comprehensive and flexible PLM platform that can help your company improve collaboration, innovation, and agility throughout the product development process. With Agile PLM, you can manage all aspects of your product development lifecycle in one place, streamlining communication and reducing the risk of errors. Agile PLM also offers a range of tools and features that can help you accelerate product development and increase efficiency.

To learn more about the health of your ERP Applications, book an appointment with us!

bottom of page