Mar 16-19, 2026Las Vegas, Nevada, NV
SAP GRC
Featured Insiders
Upcoming Events
SAPinsider Las Vegas 2026
Related Vendors
What is SAP GRC?
Governance, risk, and compliance (GRC) is a vital set of functions for enterprises to maintain secure and audit-friendly environments while being more confident in their actions. For SAP customers, SAP GRC can mean a set of GRC products provided by SAP itself or the GRC activities and technologies related to SAP systems.
What is SAP GRC?
Governance, risk, and compliance (GRC) is a vital set of functions for enterprises to maintain secure and audit-friendly environments while being more confident in their actions. For SAP customers, SAP GRC can mean a set of GRC products provided by SAP itself or the GRC activities and technologies related to SAP systems.
GRC is growing in importance with rapidly changing regulations that create new compliance challenges. Security and financial risks are also on the rise as companies adopt more cloud technologies, enact bring-your-own-device policies, and enable remote workers in greater numbers.
SAP GRC tools are available to help with areas of risk management, process control, financial compliance, threat detection, identity management, privacy governance, and more. SAP partners and other vendors that provide GRC solutions and consulting services include Appsian Security, Fastpath, and Soterion.
Key Considerations for SAPinsiders:
- Take inventory of your GRC processes and automate wherever possible. In our most recent GRC State of the Market research, successful GRC organizations are focused on automation to streamline processes. To do this, processes being automated need to be repeatable and effective. Before investing in GRC automation technology, it’s best to get processes in line. Many companies are automating the process of keeping track of who makes changes to the SAP systems.
- Digital transformation offers the opportunity to rethink GRC processes. If your company is implementing new software such as SAP S/4HANA, it’s smart to use that project as a catalyst to examine key GRC processes and find out how they can be improved. For example, HP set up a new GRC system during its SAP S/4HANA migration, including rethinking its user access processes and segregation of duties (SoD) ruleset. In the past HP relied on a homegrown tool for access control but implemented SAP Access Control and SAP Process Control as a component of its SAP S/4HANA migration.
- Determine the present and future state of remote work at your company, and how that impacts risk and security. Many companies have gone more remote in the past two years. For GRC groups, this provides more challenges for user access and opens companies up to more cyber threats. Map out your remote working landscape and determine what processes and tools you have in place to reduce risk.
96 results
Building a Successful Security and Compliance Program for Your SAP LandscapeMay 1, 2019 — In a climate of ever-increasing regulatory requirements, external auditors and organizations such as the US-based Public Company Accounting Oversight Board, which oversees audits of public companies, are increasing their scrutiny of security and privacy p
1 minute read
GRC: Case study: How Revlon completed a global security redesign on an accelerated timelineMar 10, 2019 — Learn how Revlon implemented a scalable segregation-of-duties-compliant role architecture in alignment with its GRC ruleset and business processes in its SAP environment. Click this link to view the slides from this session — GRC2017_Bell_Casestudyhowrevloncompleted. Betina Bell If you have comments about this article or publication, or would like to submit an article idea, please contact […]
1 minute read
GRC: Case study: How Stanley Black & Decker designed an efficient global role structureMar 1, 2019 — Learn how Stanley Black & Decker approached the design phase of its global SAP security redesign. here Erin Swartzmiller If you have comments about this article or publication, or would like to submit an article idea, please contact the editor.
1 minute read
GRC: Case study: How Honeywell provides GRC insights to C-level executivesMar 1, 2019 — Honeywell has implemented SAP GRC solutions for risk, compliance, and policy management across different business groups. Learn how the company developed powerful dashboards for the executive team. here Vinod Kumar If you have comments about this article or publication, or would like to submit an article idea, please contact the editor.
1 minute read
SAP GRC Collection 2019Dec 14, 2018 — SAPinsider has assembled nine popular pieces for SAP GRC professionals. They provide both strategic and tactical insights for organizations using SAP® GRC solutions to manage risk and compliance, strengthen cybersecurity, detect and prevent fraud, and op
1 minute read
What’s new in SAP Process Control and SAP Risk Management version 12.0Aug 1, 2018 — Panelists: Jan Gardiner, SAP Date: Thursday, August 30 Sponsor: SAPinsider SAP’s newest versions of SAP Process Control and SAP Risk Management are planned for release in September. Join a Live Q&A with SAP’s Jan Gardiner, a speaker at the upcoming SAPinsider GRC conference in Prague, to hear about the new features and functionalities of the […]
29 minute read
GDPR Action Plan: Discover, Manage, Protect and ReportJul 10, 2018 — Matthew Shea On May 25th, 2018, the European Union began enforcing the General Data Protection Regulation (GDPR) to protect customer privacy and data. GDPR adherence requirements apply to any organization in any country, inside or outside the EU, that handles or processes EU residents’ personal data. In the wake of GDPR, organizations should reconsider their […]
17 minute read
Implementing a Role Redesign Project in 2018Apr 25, 2018 — With converging forces like big data, artificial intelligence, and dev ops, role redesign projects are capturing SAP customers’ interest in 2018. At GRC 2018, SAPinsider spoke with Stephen Dubravac, Executive Vice President at Security Weaver, about how role redesign affects auditors, end users, and IT by creating a set of roles that provides a better […]
1 minute read
Building a Bullet-Proof Cybersecurity Program with SAP Process Control and SAP Risk ManagementDec 1, 2017 — Cyberattacks, like the May 2017 WannaCry attack, can be devastating, but a breach can easily be prevented with appropriate monitoring and controlling of your critical SAP data. Read Q&A transcript with EY’s Natalie Reuss to find out how you can use SAP Process Control to manage and evaluate common vulnerability areas. Get answers to questions […]
5 minute read
Be Compliant, Stay CompliantNov 7, 2017 —
The General Data Protection Regulation (GDPR) — a new data privacy regulation in Europe — will affect any organization that handles the personal data of EU residents, regardless of whether it is located in the EU. With the regulation going into effect in May 2018, and stiff fines for non-compliance, now is the time to establish a process for adherence. Learn how SAP customers can ensure compliance with the GDPR by focusing on four critical areas: policies, procedures, protocol, and people.
2 minute read