Mark Deiss is a SAP Security Specialist with more than 10 years of SAP experience who works for the Dutch company Newitera. He conducts security assessments and helps resolve security issues. His specialty is SAP authorizations. What always has drawn his attention is how creative people are in circumventing authorizations. He has many stories to tell about companies that think they are doing the right thing security-wise but actually are making things less secure. After CISSP certification he moved his focus to applied cryptography. Newitera is now working on solutions replacing client certificates.