Governance, Risk & Compliance

Increased regulation, and significant technology and business transformation holds ramification for GRC teams and strategy. Content in this category targets risk, audit, and compliance leaders and their teams. We will explore best practices from process perspective, but also delve into how organizations are using both SAP and third-party solutions to manage risk, user access, security, data protection and privacy and support their overall controls environment. Explore best practices, and case studies that will help your organization improve their current compliance initiative, apply leading edge technology, and get greater visibility into the key risks and vulnerabilities that impact your organization.


  1. GRC for SAP S/4HANA and Cloud Applications Research Report

    Reading time: 1 mins

  2. Managing the Identity Life Cycle in Hybrid SAP Environments

    Managing the Identity Life Cycle in Hybrid SAP Environments

    Reading time: 13 mins

  3. firefighter

    Brighthouse Financial Accelerates User Provisioning Cycles

    Reading time: 4 mins


  1. Magnitude

    Reading time: 4 mins

    Before integrating Saviynt’s Identity Governance and Administration (IGA) solution and SAP Access Control, Brighthouse Financial ran an entirely manual user provisioning process using an access request feature in SharePoint. This case study explains how the Fortune 500 company improved their user provisioning processes for SAP products with SAP Access Control and then implemented Saviynt’s IGA…
  2. When to Use Organization Rules and Reporting in Compliance Calibrator

    Reading time: 12 mins

    Find out if your company should use organization rules for eliminating false positives from reports. Key Concept You use organization rules to provide an additional layer of segregation of duties (SoD) analysis to remove false positives that may result from segregating based on organization levels. You perform this analysis on top of your core Compliance…...…
  3. Identify Fraud Risks with Forensic Audit Queries

    Reading time: 23 mins

    Audit committees, management, investors, regulators, and external auditors expect your business process controls to be effective, efficient, and testable. See how to extend your GRC functionality to identify control exceptions in your SAP system by locating data in SAP tables and running forensic audit queries. Out of the box, compliance solutions such as the SAP…...…
  4. 7 Standard SAP Reports for Audit Information

    Reading time: 11 mins

    Many SAP users think that only third-party tools can carry out a security audit of your SAP system. If you know where to look in your SAP system, you can find some hidden gems that provide you with information that auditors want. See seven standard reports that you can use to better prepare for your…...…
  5. 3 Best Practices for Reporting GRC Issues to SAP GRC Support

    Reading time: 14 mins

    See the best ways to communicate your GRC support issues with the SAP GRC Support team, including what information to present and how to present it. Less than a year ago, I managed the Compliance Calibrator implementation at a Fortune 200 company and submitted several messages a month to SAP GRC Support. The more issues…...…
  6. SAP’s Strategy for End-to-End ILM Success: The Information Lifecycle Management Solution from SAP Bridges the Gap Between Applications and Storage Technology for Legal Compliance

    Reading time: 25 mins

    These are some of the major tasks for a BW to HANA migration. by Peter Graf, Vice President of Marketing, SAPMarkets SAPinsider - 2000 (Volume 1), June (Issue 1) by Peter Graf, Vice President of Marketing, SAPMarkets SAPinsider - 2000 (Volume 1), June (Issue 1) by Karl Kessler and Joachim Jakob, SAP AG SAPinsider -…
  7. Provide Accurate and Consistent Language Support for Your Global MDMP Systems by Converting to Unicode

    Reading time: 2 mins

    With the proliferation of global systems, organizations need to be able to handle data in a variety of languages across a range of platforms. To meet this need, all SAP applications based on SAP Web Application Server 6.20 and higher support Unicode, a character-encoding standard that assigns a unique number to every character in a…...…
  8. Identify Transaction Codes for Easy Access to IMG Activities

    Reading time: 7 mins

    Discover how to identify transaction codes in the SAP Implementation Guide (IMG) for instant access to your frequently used IMG activities. Key Concept The Implementation Guide (IMG) is SAP’s backbone for setting up and adapting the system to business and user requirements. It provides a thorough, detailed synopsis of all relevant steps for tuning and…...…
  9. Comply with Sarbanes-Oxley Regulations by Locking Posting Periods in CO-PA

    Reading time: 11 mins

    Discover how to use the Profitability Analysis (CO-PA) valuation enhancement to lock posting periods against changes in CO-PA data. See also how this solution helps meet Sarbanes-Oxley compliance for internal controls on CO-PA reporting. Key Concept Valuation is a key capability of costing-based Profitability Analysis (CO-PA) that the system uses to automatically fill value fields…...…
  10. Improve Your Compliance by Using VSOE-Based Revenue Recognition

    Reading time: 11 mins

    You can break down revenue recognition into two considerations — when to recognize the revenue and how much to recognize. Discover the procedure in your SAP system to apply the vendor-specific objective evidence-based fair value process to address these issues. Determine how much revenue to recognize when individual software elements are bundled in a product…....…