Governance, Risk & Compliance

Increased regulation, and significant technology and business transformation holds ramification for GRC teams and strategy. Content in this category targets risk, audit, and compliance leaders and their teams. We will explore best practices from process perspective, but also delve into how organizations are using both SAP and third-party solutions to manage risk, user access, security, data protection and privacy and support their overall controls environment. Explore best practices, and case studies that will help your organization improve their current compliance initiative, apply leading edge technology, and get greater visibility into the key risks and vulnerabilities that impact your organization.


  1. GRC for SAP S/4HANA and Cloud Applications Research Report

    Reading time: 1 mins

  2. Managing the Identity Life Cycle in Hybrid SAP Environments

    Managing the Identity Life Cycle in Hybrid SAP Environments

    Reading time: 13 mins

  3. firefighter

    Brighthouse Financial Accelerates User Provisioning Cycles

    Reading time: 4 mins


  1. SAP

    Reading time: 4 mins

    Before integrating Saviynt’s Identity Governance and Administration (IGA) solution and SAP Access Control, Brighthouse Financial ran an entirely manual user provisioning process using an access request feature in SharePoint. This case study explains how the Fortune 500 company improved their user provisioning processes for SAP products with SAP Access Control and then implemented Saviynt’s IGA…
  2. Monitor Alerts in Risk Analysis and Remediation

    Reading time: 14 mins

    See the different kinds of alerts in SAP BusinessObjects Access Control Risk Analysis and Remediation and how to configure them. Key Concept Risk Analysis and Remediation (RAR) is part of the GRC Access Control suite. This capability helps all key stakeholders work in a collaborative manner to achieve ongoing segregation of duties and audit compliance…...…
  3. Set Up Preference Processing to Delineate Customs Tariff Priorities and Manage Risk with Global Sourcing

    Reading time: 19 mins

    This walk-through of the configuration steps for Preference Processing within SAP GRC Global Trade Services Risk Management shows how to address tariff preferences in your trade application and systems. It includes setting up the communication between SAP GRC Global Trade Services and SAP ERP Central Component. Key Concept Duty and restriction applies to goods imported…...…
  4. The Missing Link: Compliance at the Code Level

    Reading time: 16 mins

    Establishing security processes, developer training, and tools right from day one of development projects leads to initially higher investments. However, the savings resulting from lower cost for corrections and lower risk for cyber attacks in the final product are going to outweigh the initial investments substantially. See some examples of insecure code issues and some…...…
  5. Learn the SAP NetWeaver Platform Layer Configuration for GRC Process Control 2.5

    Reading time: 22 mins

    Discover the ways SAP GRC Process Control interacts with SAP NetWeaver to give you improved means of analysis and presentation formats, including printing, download, user interface, and graphics features. Key Concept SAP GRC Process Control 2.5 is a solution for internal controls management that enables members of audit and internal controls teams to gain better…...…
  6. Discover the Financial Aspects of Trade Compliance with GRC Global Trade Services

    Reading time: 15 mins

    Although SAP GRC Global Trade Services works very closely with logistics and interfaces with supply chain processes, it affects Financial Accounting in a number of ways as well. Learn how the functionality affects finance functionality and features directly and indirectly. Key Concept GRC Global Trade Services supports the production of international shipping documentation, including commercial…...…
  7. Integrate the Four Capabilities of SAP GRC Access Control

    Reading time: 15 mins

    Learn about integration points of the four capabilities of SAP GRC Access Control in one place. Key Concept Risk Analysis is the process by which user access is evaluated against segregation of duties (SoD) rules to determine if the access causes any SoD conflicts. SAP GRC Access Control is comprised of four separate capabilities: Risk…...…
  8. Use SAP Solutions for GRC as the Cornerstone for a Product Compliance Framework

    Reading time: 8 mins

    See how to leverage the governance structures inside SAP solutions for GRC for product compliance. Key Concept Similar to Segregation of Duties (SoD) in financial compliance, you can use process controls to define Delegation of Responsibilities (DoR) in SAP solutions for GRC for product compliance. DoR is based on the concept of a responsibilities matrix…...…
  9. Improve Project Governance with a RACI Matrix

    Reading time: 16 mins

    See how to construct a matrix that governs responsibilities in your organization. Given the amorphous and increasingly global nature of organizations today, project teams face numerous challenges in identifying the kind of roles different players play. As an example, who is responsible for creating business process procedures (BPPs) for the order-to-cash process that you are…...…
  10. Configure a Customized Document Splitting Method with Extended Splitting Rules

    Reading time: 21 mins

    Find out how to create a customized document splitting method with extended document splitting rules to meet business needs. Key Concept Document splitting is a new feature in the new General Ledger that enables you to create balanced financial statements for entities such as profit centers and segments. The predefined splitting method covers the majority…...…