About Us

    AuditSAP  was founded by two very experienced IT Audit Practitioners who vow to focus their efforts to help organizations develop their IT Audit capability, automate audit processes and audit procedures, enable continuous controls monitoring, and enable continuous auditing.  AuditSAP has unique expertise in conducting audits and automating internal controls in the field of SAP. It develops tools and technology that enable audit and compliance teams to review SAP security, SAP SOD conflicts, SAP access controls, and SAP process controls in minutes rather than months.

    We aim to help the audit team achieve a truly automated environment in the workplace with respect to the review of SAP Security, Access Controls and Business Processes and related Controls.  We help audit teams to fulfill their dream of performing continuous auditing and be more valuable to management by way of reporting issues and recommendations at the right time​

    In 2016, the company opened it's very first international operations out of Toronto Canada.  This operation provides the link to international market that requires outsourcing services that are better provided by lower cost consultants found in the Philippines.

    Over the years, we continually evolved as a company.  By 2019, we have developed capabilities in Odoo implementation, automation of audit working papers, etc. As a result, our clientele evolved as well, which now include major companies in the Philippines, the US, Australia, and Asia-Pacific.​

    AuditSAP  now offers automated SAP Security Reviews.  Determine your SAP security vulnerabilities, SAP Access deficiencies, SAP SOD conflict, all done through our cloud SAP Security solutions. After you have identified your vulnerabilities and learned the magnitude of SOD conflicts that you face in your organization, 


    we can help you remediate the SAP Access deficiencies and help you perform SAP Role Redesign to mitigate SOD Conflicts and clean up the SAP roles that contribute to incompatible functions. 

Meet our Practice Leaders

Company team

Crisnick Lorenzo

The Principal responsible for Consulting and Training Services with over 31 years of international experience.  Mr Lorenzo assists clients mitigate risks and achieve regulatory compliance using common audit tools (such as ACL, IDEA, IncQueries, CSI, AIS etc), world-class standards and frameworks such as the Auditing Standards set by Institute of Internal Auditors, COBIT by ISACA, ISO standards such as ISO27000 series (security) and ISO31000 (risk management) series, and Red Book v2.0 by OCEG. 

Crisnick also provides SAP Security and Role Redesign Services to local and international organizations.


Company team

Abraham Cortez

The Practice Leader of AuditSAP. He has 36 years of audit and consulting experience in the US, Europe, and Asia Pacific.  Abe built practices for Big 4 firms and helped clients' internal audit teams to develop technical capability in IT Audit and/or SAP reviews. Abe takes pride in rolling up his sleeves to do client field work if he's the best person that the company can offer to address a client project requirement. During the earlier parts of his career, Abraham was a Partner at PwC, and a Managing Director at Deloitte Consulting. He started his IT Audit career with SGV & Co. / EY.


Company team

Katrina Cortez 

A Supervising Consultant specializing in GRC Access Control and GRC Process Control products. Katrina has about 6 years of SAP/IT audit, GRC and consulting experience. She specializes in SAP GRC Access Control and Process Control products, as well as SAP Security and Authorizations. She has developed and utilized native SAP development tools to create automated audit techniques SAP access and security, SAP business process modules, and risk analysis and remediation. 

Katrina provides SAP Security Services to local and international organizations operating as part of the clients' outsourced SAP security processes.

Company team

Elke Ian Gemzon 

Has over 8 years of experience in the field of Assurance and Advisory Services both local and abroad in managerial level He specializes as Business Consultant for Audit Services – SAP Audit And General Financial Statement Audit - and compliance, with broad knowledge in finance, Auditors and IT professionals. Business processes and transactions, external auditing, Philippine Generally Accepted Accounting Principles, International Accounting Standards (IAS) and International Financial Reporting Standards (IFRS). Elke has experience in global audit methodologies through Ernst and Young Philippines and Deloitte Touche Tohmatsu Indonesia. In addition, Elke develops and conducts SAP Audit Training for Basis, Finance & Controlling (FICO), Materials Management (MM), Procure to Pay (PTP) and Order to Cash (OTC) modules to He also manages, internal AuditSAP software development – cloud based SAP Audit tool to automate the review of SAP security and SAP process controls within PTP and OTC process.