Do You Have Questions?

Since every environment is unique, MTC Skopos does not include a built-in ruleset.
Customers are encouraged to develop their own or engage our consulting services to create a ruleset tailored to their specific needs.

While we do provide a template ruleset as a starting point, it is essential that each customer reviews and adjusts it to align with their environment and business processes.

For more information, visit the Ruleset Maintenance section.

Standard support includes up to 4 hours of consulting services to address questions about tool functionality, ruleset development, reporting capabilities, and technical recommendations for enhancing access control in your environment.

Our focus is on developing the most effective tool for performing risk analysis.
For result visualization, leading data reporting platforms such as Qlik, Tableau, and Power BI already offer the best solutions. Leveraging our experience, we provide a Power BI .pbix template to help you seamlessly visualize your risk analysis results.

Yes, the engine is technically capable of performing risk analysis on any system.
However, enabling multi-system analysis requires transforming the data into a standardized format.
We offer consulting services to support you throughout this process.

MTC Skopos includes an "Info" tab alongside the risk analysis results, which displays the number of entries from each source table as well as the checksum of the ruleset file. This allows auditors to verify the integrity of the ruleset and ensure the accuracy of the data processed.

Traditional GRC tools require months of implementation and expensive infrastructure. MTC Skopos delivers four game-changing capabilities competitors don't offer:

Pre-deployment simulation: Test role changes and user provisioning before applying them to production. See risk impact instantly instead of discovering conflicts afterward.

Algorithmic remediation: Get automated, step-by-step fix recommendations ranked by business impact. Stop guessing which changes won't break operations.

Cross-system risk detection: Identify dangerous access combinations spanning SAP, treasury systems, and other ERPs—risks that single-system tools miss entirely.

Desktop AI integration: Connect Claude Desktop, Copilot, and other AI assistants through Model Context Protocol. Your AI tools analyze your data locally, no cloud uploads required.

All this in a tool that analyzes complete systems in minutes, not hours, with zero infrastructure.

As SAP Security Consultant, we work with SAP GRC Access Control on a daily basis and enjoy its functionalities.
While we recognize the strengths of SAP GRC Access Control; the ARA module falls short in terms of in-depth simulation and reporting capabilities.

We invite you to request a trial and see how MTC Skopos can provide deeper insights and enhanced analysis.

A SAP Security Consultant and software architect team up to create a revolutionary access risk analysis tool that bridges the gap between deep security expertise and cutting-edge software engineering.

Born from years of frustration with slow, cumbersome enterprise security tools, MTC Skopos was designed by professionals who understand both the complexity of ERP security and the need for lightning-fast, portable solutions. This unique combination of domain expertise and technical innovation delivers a tool that's not just faster, but fundamentally different; built by security practitioners, for security practitioners.

Absolutely. MTC Skopos is designed to work for everyone—from Fortune 500 internal audit teams to solo consultants.

No infrastructure barriers

Unlike enterprise GRC tools that require servers, IT departments, and expensive infrastructure projects, MTC Skopos is a portable desktop application.

Download it. Run it. Analyze your client's system. No setup meetings, no procurement processes, no infrastructure costs.

Perfect for independent professionals

Freelance SAP security consultants and small audit firms can now offer the same sophisticated risk analysis capabilities as the big consulting houses—without the overhead.

Whether you're:

• A Fortune 500 internal audit team analyzing global landscapes
• A solo consultant auditing a client's SAP system
• A small audit firm serving multiple clients

You get the same powerful tool, the same fast analysis, the same depth of insight.

Client-friendly deployment

Because MTC Skopos runs locally, there's no "can we install your cloud tool in our environment?" conversation. Your client's data stays on their premises, or on your laptop during the audit—wherever you need it, with zero security concerns about external uploads.

Try the tool free for a two-week trial period. Use it on your own data or request test data.

Pricing is determined by the features selected, with no limitations on the number of users or systems monitored.

• The Customized Solution come with the basic features 2'000 CHF/year for 1 users:
  • Risk analysis
  • User & Role Explorer
  • Additional features cost between 2'000 and 4'000 CHF/year
• The Complete Solution is available for 12'000 CHF/year for 3 users.

All updates will be made available during the validity of the license. Additional user licenses can be purchased for 500 CHF each.

The Single Project solution is designed for a single consulting engagement such as an IT audit, access risk assessment, or point-in-time remediation project for one end-customer. It gives you full access to all features for the duration of that project (6 months), and can be extended monthly if needed.

We want to support independent consultants who bring real value to their clients in a tough market. The Freelancer pricing reflects our commitment to making professional GRC tooling accessible to solo practitioners, so they can compete on quality without being priced out.

The Freelancer plan is available to solo practitioners or teams of up to 3 people. If your organization fits that profile, you qualify for the Freelancer pricing.

Privacy by design

Your authorization data—who can do what in your systems—is too sensitive to upload to someone else's servers. With MTC Skopos, it stays on your computer. Period.

Local deployment means no cloud uploads, no external servers, no telemetry. Your sensitive data stays under your control at all times, meeting the strictest data residency requirements.

Built for the AI era

The new generation of AI tools runs locally on your desktop: Claude Desktop, Claude Code, OpenAI Desktop, Copilot. Because MTC Skopos is local-first, these AI assistants can access your analysis results through our Model Context Protocol integration without your sensitive data ever leaving your machine.

Ask questions in natural language: "Which users have conflicting purchase and payment access?" or "Show me remediation options for treasury conflicts." Your AI gets answers instantly, with zero cloud exposure.

Cloud platforms limit your AI adoption

With cloud GRC platforms, your data is locked behind their web interface. You can't connect your own AI tools because the data isn't accessible on your machine.

Want to use Claude to analyze your SoD conflicts? You'd have to manually copy-paste data or export files—if the vendor even allows it.

Cloud platforms control how you can use AI with your own data, often forcing you to wait for them to build (and charge for) AI features you could already access yourself.

Your data, your tools

We export everything in open formats (JSON, CSV, Excel). Security consultants and analysts can use their own scripts, tools, and methodologies to dig into the data.

No vendor lock-in, no proprietary formats you can't access. Whether you want to use Python for custom analysis, feed data into your own dashboards, or apply your unique expertise, your data remains fully exploitable with the tools you already know.

Currently, only connections to SAP via RFC are supported. If you need to connect to another system, our development team can create a custom integration for you.

For RFC connections to SAP, we provide a custom function module that ensures maximum security.
Only the required tables can be extracted, and authority checks are built-in to restrict data extraction to authorized users.

Our team is passionate about software performance and software efficiency.

We engineered MTC Skopos in Rust specifically for speed. Unlike traditional enterprise tools that waste system resources, we put extra effort to profile and eliminate software bottlenecks for each developed feature; meaning you get the fastest possible analysis your hardware can deliver.

Single-user analysis: Under 1 second
Full system analysis (10,000+ users): Minutes, not hours

This speed enables rapid simulation iterations—test dozens of provisioning scenarios in the time it takes traditional tools to run one analysis. When you're planning role changes or investigating complex conflicts, this performance difference transforms your workflow.

We believe it is possible to offer both performance and a complete set of high quality features.