SAP GRC


What is SAP GRC?

Governance, risk, and compliance (GRC) is a vital set of functions for enterprises to maintain secure and audit-friendly environments while being more confident in their actions. For SAP customers, SAP GRC can mean a set of GRC products provided by SAP itself or the GRC activities and technologies related to SAP systems.

What is SAP GRC?

Governance, risk, and compliance (GRC) is a vital set of functions for enterprises to maintain secure and audit-friendly environments while being more confident in their actions. For SAP customers, SAP GRC can mean a set of GRC products provided by SAP itself or the GRC activities and technologies related to SAP systems.

GRC is growing in importance with rapidly changing regulations that create new compliance challenges. Security and financial risks are also on the rise as companies adopt more cloud technologies, enact bring-your-own-device policies, and enable remote workers in greater numbers.

SAP GRC tools are available to help with areas of risk management, process control, financial compliance, threat detection, identity management, privacy governance, and more. SAP partners and other vendors that provide GRC solutions and consulting services include Appsian Security, Fastpath, and Soterion.

Key Considerations for SAPinsiders:

  • Take inventory of your GRC processes and automate wherever possible. In our most recent GRC State of the Market research, successful GRC organizations are focused on automation to streamline processes. To do this, processes being automated need to be repeatable and effective. Before investing in GRC automation technology, it’s best to get processes in line. Many companies are automating the process of keeping track of who makes changes to the SAP systems.
  • Digital transformation offers the opportunity to rethink GRC processes. If your company is implementing new software such as SAP S/4HANA, it’s smart to use that project as a catalyst to examine key GRC processes and find out how they can be improved. For example, HP set up a new GRC system during its SAP S/4HANA migration, including rethinking its user access processes and segregation of duties (SoD) ruleset. In the past HP relied on a homegrown tool for access control but implemented SAP Access Control and SAP Process Control as a component of its SAP S/4HANA migration.
  • Determine the present and future state of remote work at your company, and how that impacts risk and security. Many companies have gone more remote in the past two years. For GRC groups, this provides more challenges for user access and opens companies up to more cyber threats. Map out your remote working landscape and determine what processes and tools you have in place to reduce risk.

79 results

  1. GRC Centralization cloud apps

    Cloud Transformation Creates Greater Need for GRC Centralization

    Reading time: 3 mins

    Cloud applications have expanded the application stack for many organizations. This has led to a growing need for GRC Centralization.
  2. SAP Security Redesigns image

    Companies Combine their SAP Security Redesigns

    Reading time: 4 mins

    A poorly executed SAP security redesign can have significant effects on an organization: unauthorized access, increased potential for fraud, inefficient access provisioning for end-users, and audit issues. To avoid this scenario and improve security, more companies are combining their SAP security redesigns with updates to their SAP GRC solutions, observes Adam Fattorini, Senior Manager, PwC…
  3. Take Control of Your SAP GRC Destiny: Define your compliance roadmap & execute a journey to success

    Companies must take many measures to stay on the right path to compliance, such as ensuring efficient security and GRC technologies, staying one step ahead of fraudsters, and satisfying the requirements of auditors. At the same time, organizations need to avoid common pitfalls they might encounter at different stages of their GRC strategy. How can…
  4. Keynote | Going live and sustaining compliance in a virtual world with HP and Shell

    In a COVID-19 world where virtual has become the primary way of working, how do companies go live on new technologies and meet compliance objectives in a sustainable way? As companies resume their pursuit of strategic investments in IT transformation, they must be able to identify common challenges with going live and maintaining compliance in…
  5. Keynote | GRC and cybersecurity for SAP S/4HANA and the intelligent enterprise

    As the single source of truth about an enterprise's strategy and operations, SAP S/4HANA and the Intelligent enterprise vision is the beating heart of today's modern enterprises. At the same time, cybersecurity and data protection have emerged as the top risks for enterprises. Compliance, security, and risk management are key in today's digital economy, touching…
  6. Governance Risk and Compliance: State of the Market 2021 Benchmark Report

    Reading time: 1 mins

    In This Report: Governance, risk, and compliance (GRC) systems and professionals are increasingly important as regulations around data become stricter and corporate systems become a more frequent target of cybersecurity attacks. These risks and compliance challenges are compounded by the fact that many SAP organizations are in the process of transitioning to new technology —…...…
  7. Case Study: How Hershey is leveraging GRC to increase control automation with SAP S/4HANA

    Learn how The Hershey Company, one of the largest chocolate manufacturers in the world, partnered with their SAP S/4HANA ERP implementation team to embed a reliable system of internal controls as part of the solution confirmation phase of the implementation. Attend this session to hear how Hershey: - Partners with key business process owners to…
  8. Expert’s guide for SAP GRC 12 configuration, Fiori UI, HANA integration, and upgrade FAQs

    SAP GRC 12.0 has upgraded the look and feel of the GRC suite’s user experience while offering new enhanced integration with SAP HANA. Anyone considering a move from SAP GRC 10.0 to 12.0 will want to know that the upgrade will be successful. How can you best configure this security and compliance suite to fit…
  9. 2021 GRC Trends Affecting the Intelligent Enterprise

    Reading time: 5 mins

    The move to SAP S/4HANA holds broad implicates beyond technology simplicity, greater speed, and improved process improvement. Governance, Risk, and Compliance teams must fully understand the potential impact this transition has on security, roles, and overall risk to the organization. SAPinsider recently sat down with Dudley Alan Cartwright, CEO of Soterion, to hear how organizations…
  10. Keynote | GRC and Security Spotlight Session

    As the single-source of truth about an enterprise's strategy and operations, SAP S/4HANA is the beating heart of today's modern enterprises. The executive suite increasingly relies upon the CFO and Finance team to deliver strategic, predictive insight to chart a winning business strategy. At the same time cybersecurity and data protection have emerged as the…