Mar 16-19, 2026Las Vegas, Nevada, NV
SAP GRC
Featured Insiders
Upcoming Events
SAPinsider Las Vegas 2026
Related Vendors
What is SAP GRC?
Governance, risk, and compliance (GRC) is a vital set of functions for enterprises to maintain secure and audit-friendly environments while being more confident in their actions. For SAP customers, SAP GRC can mean a set of GRC products provided by SAP itself or the GRC activities and technologies related to SAP systems.
What is SAP GRC?
Governance, risk, and compliance (GRC) is a vital set of functions for enterprises to maintain secure and audit-friendly environments while being more confident in their actions. For SAP customers, SAP GRC can mean a set of GRC products provided by SAP itself or the GRC activities and technologies related to SAP systems.
GRC is growing in importance with rapidly changing regulations that create new compliance challenges. Security and financial risks are also on the rise as companies adopt more cloud technologies, enact bring-your-own-device policies, and enable remote workers in greater numbers.
SAP GRC tools are available to help with areas of risk management, process control, financial compliance, threat detection, identity management, privacy governance, and more. SAP partners and other vendors that provide GRC solutions and consulting services include Appsian Security, Fastpath, and Soterion.
Key Considerations for SAPinsiders:
- Take inventory of your GRC processes and automate wherever possible. In our most recent GRC State of the Market research, successful GRC organizations are focused on automation to streamline processes. To do this, processes being automated need to be repeatable and effective. Before investing in GRC automation technology, it’s best to get processes in line. Many companies are automating the process of keeping track of who makes changes to the SAP systems.
- Digital transformation offers the opportunity to rethink GRC processes. If your company is implementing new software such as SAP S/4HANA, it’s smart to use that project as a catalyst to examine key GRC processes and find out how they can be improved. For example, HP set up a new GRC system during its SAP S/4HANA migration, including rethinking its user access processes and segregation of duties (SoD) ruleset. In the past HP relied on a homegrown tool for access control but implemented SAP Access Control and SAP Process Control as a component of its SAP S/4HANA migration.
- Determine the present and future state of remote work at your company, and how that impacts risk and security. Many companies have gone more remote in the past two years. For GRC groups, this provides more challenges for user access and opens companies up to more cyber threats. Map out your remote working landscape and determine what processes and tools you have in place to reduce risk.
97 results
GRC: Case study: How Honeywell provides GRC insights to C-level executivesMar 1, 2019 — Honeywell has implemented SAP GRC solutions for risk, compliance, and policy management across different business groups. Learn how the company developed powerful dashboards for the executive team. here Vinod Kumar If you have comments about this article or publication, or would like to submit an article idea, please contact the editor.
1 minute read
SAP GRC Collection 2019Dec 14, 2018 — SAPinsider has assembled nine popular pieces for SAP GRC professionals. They provide both strategic and tactical insights for organizations using SAP® GRC solutions to manage risk and compliance, strengthen cybersecurity, detect and prevent fraud, and op
1 minute read
Southwire Powers Up with Analytics to Redesign User RolesSep 13, 2018 —
Preventing access risk and ensuring regulatory compliance are top priorities for any business, and cable and wire manufacturer Southwire Company, LLC, understands how analytics are required to successfully achieve these goals. Concerned that access-related risks were unacceptably high, Southwire embarked on a multi-phased project that aimed to remove, reduce, and mitigate these risks and to design more efficient user roles. Learn how Southwire Company, LLC, leveraged Security Weaver solutions to identify risks, remove or reduce segregation-of-duties (SoD) conflicts, optimize user role design, and improve overall business processes.
10 minute read
What’s new in SAP Process Control and SAP Risk Management version 12.0Aug 1, 2018 — Panelists: Jan Gardiner, SAP Date: Thursday, August 30 Sponsor: SAPinsider SAP’s newest versions of SAP Process Control and SAP Risk Management are planned for release in September. Join a Live Q&A with SAP’s Jan Gardiner, a speaker at the upcoming SAPinsider GRC conference in Prague, to hear about the new features and functionalities of the […]
29 minute read
GDPR Action Plan: Discover, Manage, Protect and ReportJul 10, 2018 — Matthew Shea On May 25th, 2018, the European Union began enforcing the General Data Protection Regulation (GDPR) to protect customer privacy and data. GDPR adherence requirements apply to any organization in any country, inside or outside the EU, that handles or processes EU residents’ personal data. In the wake of GDPR, organizations should reconsider their […]
17 minute read
Implementing a Role Redesign Project in 2018Apr 25, 2018 — With converging forces like big data, artificial intelligence, and dev ops, role redesign projects are capturing SAP customers’ interest in 2018. At GRC 2018, SAPinsider spoke with Stephen Dubravac, Executive Vice President at Security Weaver, about how role redesign affects auditors, end users, and IT by creating a set of roles that provides a better […]
1 minute read
Building a Bullet-Proof Cybersecurity Program with SAP Process Control and SAP Risk ManagementDec 1, 2017 — Cyberattacks, like the May 2017 WannaCry attack, can be devastating, but a breach can easily be prevented with appropriate monitoring and controlling of your critical SAP data. Read Q&A transcript with EY’s Natalie Reuss to find out how you can use SAP Process Control to manage and evaluate common vulnerability areas. Get answers to questions […]
5 minute read
Be Compliant, Stay CompliantNov 7, 2017 —
The General Data Protection Regulation (GDPR) — a new data privacy regulation in Europe — will affect any organization that handles the personal data of EU residents, regardless of whether it is located in the EU. With the regulation going into effect in May 2018, and stiff fines for non-compliance, now is the time to establish a process for adherence. Learn how SAP customers can ensure compliance with the GDPR by focusing on four critical areas: policies, procedures, protocol, and people.
2 minute read
An Integrated Approach to GRCNov 7, 2017 —
Cybersecurity is top of mind for governance, risk, and compliance (GRC) professionals for one clear reason: The value of data is growing. Some might think technology alone is the solution to cyberattacks. And while solutions like SAP Enterprise Threat Detection do a great job at mitigating these risks, a more holistic GRC approach is the only way for companies to protect themselves in the digital age. Hear how a strong GRC program takes a holistic approach to risk management, fraud monitoring, and access governance by leveraging the three lines of defense to provide a strategic benefit to the company.
4 minute read
Live from SAPinsider Studio: How to Maintain a Strong GRC FrameworkMay 22, 2017 — SAPinsider Studio sits down with Jan Gardiner, Senior Director of GRC Solutions at SAP, to discuss how SAP’s GRC solutions help to maintain a strong governance framework. Topics covered include: What the “Three Lines of Defense” framework is and how organizations can follow it How SAP Process Control helps companies maintain effective GRC practices Why […]
1 minute read