Mar 16-19, 2026Las Vegas, Nevada, NV
SAP Fraud Management
Featured Insiders
Upcoming Events
SAPinsider Las Vegas 2026
Related Vendors
What Is SAP Fraud Management?
Fraud can be devastating to a business, leading to financial and legal consequences. Fraud management seeks to identify potential areas for fraud across business processes both internally and externally with partners. SAP Fraud Management looks at potential for fraud related to SAP customers. The SAP tool related to fraud management is called SAP Business Integrity Screening.
What Is SAP Fraud Management?
Fraud can be devastating to a business, leading to financial and legal consequences. Fraud management seeks to identify potential areas for fraud across business processes both internally and externally with partners. SAP Fraud Management looks at potential for fraud related to SAP customers. The SAP tool related to fraud management is called SAP Business Integrity Screening.
Governance, Risk, and Compliance (GRC) teams are often tasked with managing fraud, and they deploy many standard GRC strategies to deal with fraud risk. For example, they may put fraud controls into place as well as collect process and transactional data for fraud analysis. Fraud management often integrates into other areas of GRC, such as the broader Risk Management.
Tools for fraud management look to centralize fraud risk data and automate fraud screening and analysis. Fraud management tools may have the following capabilities, among others:
- Exception detection and compliance checks
- Detection strategy calibration
- Exception-based scenario analysis
- Business partner screening
- Automated workflows and notification
- Continuous Controls Monitoring (CCM)
- Integrity screening.
Many risk detection and management tools also feature fraud capabilities. For example, Appsian Security’s threat detection and response solutions seek to identify fraud potential from transactional data. Similarly, Fastpath offers tools for risk quantification and transactional controls that can help manage fraud risks. A company like RSM can help organizations establish fraud management programs, including best practices for fraud prevention and detection.
Key Considerations for SAP Fraud Management
- GRC and fraud management teams are stretched — in our most recent research into the state of the GRC market, we found they have more responsibility but aren’t growing along with that responsibility. The leading companies in our GRC research are utilizing automation to optimize their GRC resources. For fraud management, this could mean automating controls and detection.
- Fraud risk analysis can also be done at the user access level. For example, Lundbeck implemented a Security Weaver tool for segregation of duties analysis to identify the potential for users to commit fraud. Consider how you can integrate fraud management across GRC and security functions.
- Centralize your fraud risk data. You are monitoring areas throughout the business for fraud risk. To best manage that fraud risk, you need a single view of where fraud potential exists and which risk holds the most potential harm for the company. This can help your organization prioritize which threats need to be addressed most imminently.
262 results
Reduce Costs for Compliance by Implementing a Risk-Based Internal Control SolutionFeb 4, 2010 — Costs for compliance and fraud prevention have risen significantly in recent years and with the current economic situation we’re likely to manage more regulations in the future, further driving costs up. Companies relish efficiency in the GRC space to garner the true benefits of compliance. One means of more efficient compliance is an integrated solution […]
19 minute read
IFRS Adoption for US Companies: A PrimerApr 17, 2009 — /GRCWorried about the impending US conversion to International Financial Reporting Standards (IFRS)? See some quick hints about things you should know and places you can look for information as the landscape changes. Key Concept International Financial Reporting Standards (IFRS) is a reporting standard that is being adopted worldwide, and likely impending for the United States […]
8 minute read
Define Risks and Functions with Risk Analysis and Remediation Rule ArchitectApr 14, 2009 — Discover the makeup and functionality of Rule Architect within SAP BusinessObjects Access Control Risk Analysis and Remediation. Key Concept Risk Analysis and Remediation (RAR) is part of SAP BusinessObjects Access Control. This capability helps all key stakeholders work in a collaborative manner to achieve ongoing segregation of duties (SoD) and audit compliance at all levels. […]
14 minute read
Avoid Audit Problems by Building Controls as Part of Your Implementation Life CycleFeb 15, 2009 — /GRCTo have an efficient and effective control design process, certain risk and control activities need to occur during the implementation process. These activities reduce the potential for audit issues and minimize future rework. By following this strategy you significantly increase the likelihood of having a successful implementation and a pain-free audit. Key Concept Controls are […]
25 minute read
Get Your System Clean with Risk Analysis and RemediationDec 15, 2008 — Become and stay Sarbanes-Oxley compliant with Risk Analysis and Remediation. Learn about its main features, technical architecture, and setup. Key Concept SAP GRC Access Control delivers controls that identify and prevent access and authorization risks in cross-enterprise systems. The controls prevent fraud and reduce the cost of continuous compliance and control. SAP GRC Access Control […]
15 minute read
Configure and Implement the Proper Internal Controls Up Front for an Easier AuditDec 15, 2008 — Having to go back and change your SAP system or your related business processes to deal with audit concerns takes time away from your daily operations and results in unnecessary distractions. By configuring your SAP system appropriately and designing your related business processes to effectively address your business risks, you can save significant effort. This […]
30 minute read
When to Use Organization Rules and Reporting in Compliance CalibratorFeb 15, 2008 — Find out if your company should use organization rules for eliminating false positives from reports. Key Concept You use organization rules to provide an additional layer of segregation of duties (SoD) analysis to remove false positives that may result from segregating based on organization levels. You perform this analysis on top of your core Compliance […]
12 minute read
Properly Manage Your GRC Initiatives with Standardization, Optimization, and AutomationFeb 15, 2008 — Effective controls ensure that a company complies with regulatory requirements, but they should also be cost effective. Standardization, optimization, and automation can improve the efficiency and cost-effectiveness of compliance. Key Concept CFOs frown on the idea of reducing the number of controls in a process. However, having many controls does not necessarily yield all the […]
22 minute read
Use Change Documents for Sarbanes-Oxley Compliance TestingJun 15, 2005 — The time for Sarbanes-Oxley Act of 2002 testing is now. Find out how to leverage existing hidden system resources in R/3 to help fulfill some of the crucial Sarbanes-Oxley Act mandates. Key Concept For compliance with Section 404 of the Sarbanes-Oxley Act, many public companies have taken a two-phased approach to assess the effectiveness of […]
10 minute read
Statutory Requirements Compliance: Are You Ready for China?Jan 15, 2005 — Prior to rolling out an R/3 system to China, a company needs to answer the question, “What statutory compliances does China require and how do I make sure the R/3 FI/CO implementation meets these requirements?” The author shares her experience from consulting on a dozen China rollouts in multiple industries, including two in 2004. She […]
19 minute read