Hershey Demonstrates the Strategic Value of Controls & Compliance

The Hershey Company’s move to SAP S/4HANA prompted a reassessment of its governance, risk, and compliance (GRC) strategy. As part of this review, Internal Audit (IA) resources were reviewed, restructured, and incorporated into the SAP S/4HANA project plan.

The IA team employs an Agile implementation strategy to build controls into the process, evaluate performance, and adjust when necessary, using version GRC 12.0 of the SAP Access Control and SAP Process Control tools. These tools enable Hershey to manage integration for both SAP and non-SAP systems, provide transparency and accountability, and simplify process execution and risk management.

Hershey is rolling out SAP S/4HANA in phases by region, which will give the IA team the ability to examine adoption and control failure rates and determine how IA is leveraging GRC. “Getting involved proactively, especially with an Agile approach, has given us the opportunity to really influence the future design of the process so that controls are innately embedded,” concludes Jon Laubenstine, Senior Director, Internal Audit, at Hershey.

Read this article and learn:
- How Hershey is reassessing its GRC strategy as part of its move to the SAP S/4HANA platform;
- Why Hershey is rolling out the SAP S/4HANA platform in regional phases;
- The important of including the IA team at the beginning of your SAP S/4HANA migration.