Site icon ExpressGRC | SAP Cyber Security Software for SAP Compliance

ALL the Actors in the SAP GRC Implementation Process

Business Owner: Who mainly the Functional Consultants

Approve risks for Monitoring and identifies suitable SAP reports for mitigation Controls. Let us for example user have Create Vendors and Approve invoices. They could use a report which shows the any new Vendors creations by Month and make sure someone signs off on the list of new vendor creations

Approve remediation for user access and roles. The Mitigation can be at the user level or role level based on the situation. When the business process is handled in automated fashion or external to the system the Mitigation can be applied at the role level.

Actively participate in role design and changes: Give their input on changes and also propose new roles based on requirement

Approve or reject the risks based on business area: The Risk which come default in SAP GRC cannot all be used. Some have disable and new ones have to be added based on the company’s business area and activity

httpv://www.youtube.com/watch?v=Lrs01DJtG-Q

 

SAP Security Administrator:

Managing the GRC tool and Sap role management Process: Responsible for most of the configuration steps in the system to adhere to the client’s requirement

Advising the Business owner on the mitigation options: When the mitigation option is choose then the impact analysis has to be given to the business owner to understand the impact to the system

Customize GRC rules to fit the business requirement: Do the actual activation and deactivation of the SOD Rules.

Analyze and remediate roles based on client’s requirement: Apply the Mitigation controls in the system based on approval

Audit Group: Mainly the Internal Auditing group

Monitor the risk in the production: Who will constantly monitor the new risks created in the system due to changes to the roles or addition of new roles to the users

Design the approval and documentation of Mitigation controls: Champion the documentation of mitigation approval and monitoring process

Perform periodic testing of the Mitigation controls

Examine execution of the controls at the agreed upon interval by the Team
[vc_row css=”.vc_custom_1512575306373{margin-top: 50px !important;}”][vc_column width=”1/3″][vc_cta h2=”Free Step by Step SAP License Optimization Guide” shape=”square” add_button=”bottom” btn_title=”click here” btn_style=”flat” btn_color=”default” btn_i_icon_fontawesome=”stm-diamond” btn_css_animation=”left-to-right” css_animation=”left-to-right” btn_add_icon=”true” css=”.vc_custom_1512579904776{padding-top: 50px !important;padding-right: 35px !important;padding-bottom: 50px !important;padding-left: 35px !important;background-color: #3a80f1 !important;}” btn_link=”url:http%3A%2F%2Fexpressgrc.com%2Ffree-sap-license-optimization-guide%2F||” el_class=”c_action”]SAP Customer is liable to pay 70 Million additional SAP licensing fees as a result of what is broadly known as Indirect Access.[/vc_cta][/vc_column][vc_column width=”1/3″][vc_cta h2=”Free SAP GRC 10.0 Step by Step Guide” shape=”square” add_button=”bottom” btn_title=”download here” btn_style=”flat” btn_color=”default” btn_i_icon_fontawesome=”stm-diamond” btn_css_animation=”left-to-right” css_animation=”bottom-to-top” btn_add_icon=”true” css=”.vc_custom_1512579856805{padding-top: 50px !important;padding-right: 35px !important;padding-bottom: 50px !important;padding-left: 35px !important;background-color: #f1b500 !important;}” btn_link=”url:http%3A%2F%2Fexpressgrc.com%2Fsap-grc-10-1-step-step-guide%2F||” el_class=”c_action”]Are you fed up with being not able to get job? Tired of being disappointed in yourself, because you just can’t seem to get started in the career as SAP  GRC Consultant?[/vc_cta][/vc_column][vc_column width=”1/3″][vc_cta h2=”Financial Loss due to Fraud Risk” shape=”square” add_button=”bottom” btn_title=”click here” btn_style=”flat” btn_color=”default” btn_i_icon_fontawesome=”stm-diamond” btn_css_animation=”left-to-right” css_animation=”right-to-left” btn_add_icon=”true” css=”.vc_custom_1512579731433{padding-top: 50px !important;padding-right: 35px !important;padding-bottom: 50px !important;padding-left: 35px !important;background-color: #1d9e3f !important;}” btn_link=”url:http%3A%2F%2Fexpressgrc.com%2Ffree-sap-process-control-step-step-guide%2F||” el_class=”c_action”]Using the right kind of SAP Controls in the right way can be trans formative for any SAP System[/vc_cta][/vc_column][/vc_row]

Exit mobile version