Governance, Risk & Compliance

Increased regulation, and significant technology and business transformation holds ramification for GRC teams and strategy. Content in this category targets risk, audit, and compliance leaders and their teams. We will explore best practices from process perspective, but also delve into how organizations are using both SAP and third-party solutions to manage risk, user access, security, data protection and privacy and support their overall controls environment. Explore best practices, and case studies that will help your organization improve their current compliance initiative, apply leading edge technology, and get greater visibility into the key risks and vulnerabilities that impact your organization.


  1. GRC for SAP S/4HANA and Cloud Applications Research Report

    Reading time: 1 mins

  2. Managing the Identity Life Cycle in Hybrid SAP Environments

    Managing the Identity Life Cycle in Hybrid SAP Environments

    Reading time: 13 mins

  3. firefighter

    Brighthouse Financial Accelerates User Provisioning Cycles

    Reading time: 4 mins


  1. Qlik

    Reading time: 4 mins

    Before integrating Saviynt’s Identity Governance and Administration (IGA) solution and SAP Access Control, Brighthouse Financial ran an entirely manual user provisioning process using an access request feature in SharePoint. This case study explains how the Fortune 500 company improved their user provisioning processes for SAP products with SAP Access Control and then implemented Saviynt’s IGA…
  2. Keynote | GRC and cybersecurity for SAP S/4HANA and the intelligent enterprise

    As the single source of truth about an enterprise's strategy and operations, SAP S/4HANA and the Intelligent enterprise vision is the beating heart of today's modern enterprises. At the same time, cybersecurity and data protection have emerged as the top risks for enterprises. Compliance, security, and risk management are key in today's digital economy, touching…
  3. Effective Internal Auditing in the Digitalized Era: Adding value to the business

    We see a strong push towards organizations adopting cloud-based software while still having on-prem operations, automation of as many processes as possible, use of many types of artificial intelligence, and ongoing decentralized and home working. What needs to be audited, and how it is audited, is changing. In this session you will: - Obtain a…
  4. Creating and deploying automated controls in SAP Process Control

    Are you taking full advantage of your SAP Process Control investment with automation? Attend this session to learn how to configure continuous control monitoring in SAP Process Control. Attendees will learn how to: - Define and test data sources to retrieve data from source systems using common sub-scenarios (reports, tables, queries, and so on) -…
  5. Video: Hershey Demonstrates the Strategic Value of Controls & Compliance

    The mention of Hershey might bring to mind an image of chocolate and it should, but there is a lot more to discover: a chocolate and confectionary leader, The Hershey Company has over 90 brands. Hershey is continuously challenged to innovate and at speed to meet changing consumer preferences and in a global context, like…
  6. Hershey Demonstrates the Strategic Value of Controls & Compliance

    Reading time: 5 mins

    The Hershey Company’s move to SAP S/4HANA prompted a reassessment of its governance, risk, and compliance (GRC) strategy. As part of this review, Internal Audit (IA) resources were reviewed, restructured, and incorporated into the SAP S/4HANA project plan. The IA team employs an Agile implementation strategy to build controls into the process, evaluate performance, and…
  7. Why Masking is a Must-Have for Test Data Management

    Cybersecurity demands are becoming more relevant and complex, especially since the introduction of GDPR. Organizations now find themselves asking questions about: Standardizing, automating, and accelerating a vital tasks like data masking How to protect sensitive data for non-productive systems? How to get anonymized data which are GDPR-compliant? Join experts Bernd Baier, Sr. Solution Architect, and…
  8. Securing the Intelligent Enterprise from Cyberattacks

    Join Onapsis and SAP as we highlight how to address security and compliance issues so you can protect your mission-critical applications. In this session we will discuss the latest threat landscape targeting SAP applications, the importance of keeping up with patches and the need to continuously assess and monitor SAP applications to quickly detect and respond to…
  9. Expert Q&A: Best Practices for Continuous Control Monitoring

    Many SAP users are simplifying and automating continuous control monitoring (CCM) to manage their GRC environment. Marie-Luise Wagener-Kirchner, Vice President of Governance, Compliance and Digital Services at SAP, recently sat down with SAPinsider to share best practices for CCM. Wagener-Kirchner has been involved in the SAP ecosystem for approximately 20 years, always with a focus…
  10. Governance Risk and Compliance: State of the Market 2021 Benchmark Report

    Reading time: 1 mins

    In This Report: Governance, risk, and compliance (GRC) systems and professionals are increasingly important as regulations around data become stricter and corporate systems become a more frequent target of cybersecurity attacks. These risks and compliance challenges are compounded by the fact that many SAP organizations are in the process of transitioning to new technology —…