Topics
Regions
Industries

SAP GRC


Filter By

  • Regions
  • Industries

Browse By

What is SAP GRC?

Governance, risk, and compliance (GRC) is a vital set of functions for enterprises to maintain secure and audit-friendly environments while being more confident in their actions. For SAP customers, SAP GRC can mean a set of GRC products provided by SAP itself or the GRC activities and technologies related to SAP systems.

What is SAP GRC?

Governance, risk, and compliance (GRC) is a vital set of functions for enterprises to maintain secure and audit-friendly environments while being more confident in their actions. For SAP customers, SAP GRC can mean a set of GRC products provided by SAP itself or the GRC activities and technologies related to SAP systems.

GRC is growing in importance with rapidly changing regulations that create new compliance challenges. Security and financial risks are also on the rise as companies adopt more cloud technologies, enact bring-your-own-device policies, and enable remote workers in greater numbers.

SAP GRC tools are available to help with areas of risk management, process control, financial compliance, threat detection, identity management, privacy governance, and more. SAP partners and other vendors that provide GRC solutions and consulting services include Appsian Security, Fastpath, and Soterion.

Key Considerations for SAPinsiders:

  • Take inventory of your GRC processes and automate wherever possible. In our most recent GRC State of the Market research, successful GRC organizations are focused on automation to streamline processes. To do this, processes being automated need to be repeatable and effective. Before investing in GRC automation technology, it’s best to get processes in line. Many companies are automating the process of keeping track of who makes changes to the SAP systems.
  • Digital transformation offers the opportunity to rethink GRC processes. If your company is implementing new software such as SAP S/4HANA, it’s smart to use that project as a catalyst to examine key GRC processes and find out how they can be improved. For example, HP set up a new GRC system during its SAP S/4HANA migration, including rethinking its user access processes and segregation of duties (SoD) ruleset. In the past HP relied on a homegrown tool for access control but implemented SAP Access Control and SAP Process Control as a component of its SAP S/4HANA migration.
  • Determine the present and future state of remote work at your company, and how that impacts risk and security. Many companies have gone more remote in the past two years. For GRC groups, this provides more challenges for user access and opens companies up to more cyber threats. Map out your remote working landscape and determine what processes and tools you have in place to reduce risk.
Show more

79 results

  1. GRC: Case study: How Revlon completed a global security redesign on an accelerated timeline

    Reading time: 1 mins

    Learn how Revlon implemented a scalable segregation-of-duties-compliant role architecture in alignment with its GRC ruleset and business processes in its SAP environment. Click this link to view the slides from this session — GRC2017_Bell_Casestudyhowrevloncompleted. Betina Bell If you have comments about this article or publication, or would like to submit an article idea, please contact…...…

  2. GRC: Case study: How Honeywell provides GRC insights to C-level executives

    Reading time: 1 mins

    Honeywell has implemented SAP GRC solutions for risk, compliance, and policy management across different business groups. Learn how the company developed powerful dashboards for the executive team. here Vinod Kumar If you have comments about this article or publication, or would like to submit an article idea, please contact the editor…. This content is for...…

  3. GRC: Case study: How Stanley Black & Decker designed an efficient global role structure

    Reading time: 1 mins

    Learn how Stanley Black & Decker approached the design phase of its global SAP security redesign. here Erin Swartzmiller If you have comments about this article or publication, or would like to submit an article idea, please contact the editor…. This content is for SAPinsider Monthly Subscription, SAPinsider Annual Subscription, and SAPinsider Premium Annual Subscription...…

  5. SAP GRC Collection 2019

    Reading time: 1 min

    SAPinsider has assembled nine popular pieces for SAP GRC professionals. They provide both strategic and tactical insights for organizations using SAP® GRC solutions to manage risk and compliance, strengthen cybersecurity, detect and prevent fraud, and op This content is for Basic Access, SAPinsider Monthly Subscription, SAPinsider Annual Subscription, and SAPinsider Premium Annual Subscription members only.Log…

  6. Southwire Powers Up with Analytics to Redesign User Roles

    Reading time: 10 mins

    Preventing access risk and ensuring regulatory compliance are top priorities for any business, and cable and wire manufacturer Southwire Company, LLC, understands how analytics are required to successfully achieve these goals. Concerned that access-related risks were unacceptably high, Southwire embarked on a multi-phased project that aimed to remove, reduce, and mitigate these risks and to…

  7. What’s new in SAP Process Control and SAP Risk Management version 12.0

    Reading time: 29 mins

    Panelists: Jan Gardiner, SAP Date: Thursday, August 30 Sponsor: SAPinsider SAP’s newest versions of SAP Process Control and SAP Risk Management are planned for release in September. Join a Live Q&A with SAP’s Jan Gardiner, a speaker at the upcoming SAPinsider GRC conference in Prague, to hear about the new features and functionalities of the…...…

  8. GDPR Action Plan: Discover, Manage, Protect and Report

    Reading time: 18 mins

    Matthew Shea    On May 25th, 2018, the European Union began enforcing the General Data Protection Regulation (GDPR) to protect customer privacy and data. GDPR adherence requirements apply to any organization in any country, inside or outside the EU, that handles or processes EU residents’ personal data. In the wake of GDPR, organizations should reconsider their…...…

  10. Implementing a Role Redesign Project in 2018

    With converging forces like big data, artificial intelligence, and dev ops, role redesign projects are capturing SAP customers’ interest in 2018. At GRC 2018, SAPinsider spoke with Stephen Dubravac, Executive Vice President at Security Weaver, about how role redesign affects auditors, end users, and IT by creating a set of roles that provides a better…...…

  11. Building a Bullet-Proof Cybersecurity Program with SAP Process Control and SAP Risk Management

    Reading time: 5 mins

    Cyberattacks, like the May 2017 WannaCry attack, can be devastating, but a breach can easily be prevented with appropriate monitoring and controlling of your critical SAP data. Read Q&A transcript with EY’s Natalie Reuss to find out how you can use SAP Process Control to manage and evaluate common vulnerability areas. Get answers to questions…...…

  12. An Integrated Approach to GRC

    Reading time: 4 mins

    Cybersecurity is top of mind for governance, risk, and compliance (GRC) professionals for one clear reason: The value of data is growing. Some might think technology alone is the solution to cyberattacks. And while solutions like SAP Enterprise Threat Detection do a great job at mitigating these risks, a more holistic GRC approach is the…

Featured Insiders

Become a Member

Unlimited access to thousands of resources for SAP-specific expertise that can only be found here.

Sign Up

Upcoming Events

  1. Register Now: Supply Chain Management Summit 2024

     

    May 01 - 02, 2024

     

    Chicago, IL

     
    Learn More
    View Event

Related Vendors