Mar 16-19, 2026Las Vegas, Nevada, NV
SAP GRC
Featured Insiders
Upcoming Events
SAPinsider Las Vegas 2026
Related Vendors
What is SAP GRC?
Governance, risk, and compliance (GRC) is a vital set of functions for enterprises to maintain secure and audit-friendly environments while being more confident in their actions. For SAP customers, SAP GRC can mean a set of GRC products provided by SAP itself or the GRC activities and technologies related to SAP systems.
What is SAP GRC?
Governance, risk, and compliance (GRC) is a vital set of functions for enterprises to maintain secure and audit-friendly environments while being more confident in their actions. For SAP customers, SAP GRC can mean a set of GRC products provided by SAP itself or the GRC activities and technologies related to SAP systems.
GRC is growing in importance with rapidly changing regulations that create new compliance challenges. Security and financial risks are also on the rise as companies adopt more cloud technologies, enact bring-your-own-device policies, and enable remote workers in greater numbers.
SAP GRC tools are available to help with areas of risk management, process control, financial compliance, threat detection, identity management, privacy governance, and more. SAP partners and other vendors that provide GRC solutions and consulting services include Appsian Security, Fastpath, and Soterion.
Key Considerations for SAPinsiders:
- Take inventory of your GRC processes and automate wherever possible. In our most recent GRC State of the Market research, successful GRC organizations are focused on automation to streamline processes. To do this, processes being automated need to be repeatable and effective. Before investing in GRC automation technology, it’s best to get processes in line. Many companies are automating the process of keeping track of who makes changes to the SAP systems.
- Digital transformation offers the opportunity to rethink GRC processes. If your company is implementing new software such as SAP S/4HANA, it’s smart to use that project as a catalyst to examine key GRC processes and find out how they can be improved. For example, HP set up a new GRC system during its SAP S/4HANA migration, including rethinking its user access processes and segregation of duties (SoD) ruleset. In the past HP relied on a homegrown tool for access control but implemented SAP Access Control and SAP Process Control as a component of its SAP S/4HANA migration.
- Determine the present and future state of remote work at your company, and how that impacts risk and security. Many companies have gone more remote in the past two years. For GRC groups, this provides more challenges for user access and opens companies up to more cyber threats. Map out your remote working landscape and determine what processes and tools you have in place to reduce risk.
96 results
Managing SoD Risks in Modern SAP EnvironmentsOct 21, 2020 — Tired of juggling manual and multiple technologies for GRC? Dealing with siloed reporting and failed audits? Do you know the true cost of compliance? Join this session led by Grant Small and Connor Hammersmith to gain practical insights on how to automate governance and compliance processes in modern SAP environments. Saviynt enables organizations to create a centralized identity hub that provides visibility into your governance processes across SAP and non-SAP applications. Explore how Saviynt can support digital transformation, simplify SoD compliance, and drive ROI for your organization. Learn how to:
- Automate governance and compliance processes
- Standardize risk management processes
- Choose the right implementation partner
- Calculate compliance ROI
1 minute read
Case Study: Inside Stericycle’s successful transformation projectOct 21, 2020 — Stericycle’s Project Monarch has successfully transformed over 500 business system processes to a harmonized landscape of just over 50 within four core applications. This has helped reduce customer invoicing from days/weeks/months to seconds/minutes/hours; shorten financial closes from over 28 days to less than a week; and drive management of indirect spend from less than 10% to more than 90%. In addition, attendees to this session will also learn how Stericycle was able to:
- Leverage standard processes to integrate business acquisitions within weeks, rather than months
- Automate and integrate systematic controls to replace manual ones
- Digitize processes to eliminate paper-based systems and add improved accuracy and quality
- Embed real-time data and analytics to replace incorrect, incomplete, and stale data
1 minute read
How Ingevity automated GRC processes to better manage elevated access risksOct 20, 2020 — Ingevity Corporation, a large public chemicals manufacturer, was faced with manually managing elevated access and meeting compliance requirements for internal financial auditing controls. The organization needed to ease the governance, risk, and compliance (GRC) burden on it SAP security team and overhaul its GRC processes. Attend this session to learn how Ingevity implemented elevated access management in a compliant manner, identified and remediated roles that posed risks, and became better prepared for audits. Topics include:
•How automating elevated access is more secure and compliant than using manual processes
•How proper tooling can simplify your organization’s governance processes
•How cloud-based solutions are meeting the demands of today’s GRC challenges
•Why auditors need a detailed audit trail and how to provide one
1 minute read
Case Study: How Jabil is Transforming SAP Governance using Robotic Process AutomationOct 20, 2020 — As part of the maturing the governance processes at Jabil, the company leverages several automation techniques to reduce manual tasks and streamline repetitive activities. The governance team leveraged robotic process automation (RPA) technology and the use of standard web services to automate various activities. This session shares specific examples of how RPA and web services are being used at Jabil to support SAP Access Control governance tasks. Attendees will:
- Identify access control processes that can be automated using RPA and web services
- Gain an understanding of how RPA and web services can be integrated with SAP Access Control •Obtain specific examples and use cases where RPA is being used to automate governance tasks
- Understand how to make a case for operational efficiency and improve risk posture
- See specific examples of how RPA and web services are being used to support Access Control governance tasks
- Identify Access Control processes that can be automated using RPA and web services Gain an understanding of how RPA and web services can be integrated with Access Control Obtain specific examples and use cases where RPA is being used to automate GRC tasks Understand how to make a case for operational efficiency and improve risk posture
1 minute read
Eight Questions to Ask Before Upgrading your GRC platformJul 13, 2020 — Different enterprises have different risk appetites, different compliance requirements, different operational processes, and different investment goals. What is right for one organization may not be right for another. But, whatever the right answer is, the modern enterprise must align its diverse stakeholders in order to get the right solution implemented. Find other insightful resources […]
1 minute read
Business Continuity Track at SAPinsider Virtual Event Features Strategies and Quick Wins from SAP and PartnersApr 30, 2020 — The economic disruption caused by COVID-19 has impacted organizations at all levels of their operations, creating a unique environment that makes business continuity uncertain and challenging. To address this world-wide experience SAPinsider will host a special track with SAP and partners at our 2020 virtual event to help businesses leverage SAP technology and best practices to not only maintain business continuity, but also thrive during this time.
5 minute read
New Business Models In A New Global Landscape: Challenge Or Opportunity?Jul 9, 2019 — In this e-book, discover the challenges and opportunities new global business landscapes are uncovering and how they are impacting platforms, selling models, legislation, tax and the customer experience.
1 minute read