SAP BusinessObjects GRC suite is a comprehensive and integrated approach to manage risks and controls in a manner that complies with legislative as well as corporate policies.SAP GRC addresses three main areas:
With SAP GRC Access Control it is possible to identify and eliminate access risks before they occur. 110.000 rules out-of-the-box speeds up the implementation time. With delivered connectors not only SAP systems can be conned, but also Oracle, JDE, Peoplesoft and other legacy software.SAP GRC Access Control has four main components:
SAP GRC Access Risk Management enables real-time SoD analysis of roles, profiles and users. It can detect conflicts down on permission level. It offers the possibility to simulate impact of adding or removing transactions, roles etc., preventing new conflicts from being introduced.
With this component it is possible streamline the role creating process. Intuitive workflow enables collaboration between non-technical business people and security administrators. Mandatory SoD risk analysis with a multi step approval ensures that roles put into a productive environment is free from SoD risks.
Not only cost savings can be made by automating the usually form or email based provisioning process, but also time from request, approval and the actual provisioning. With workflow managers, role owners, security and audit can work in a collaborate manner to enforce SoD rules and automate provisioning to any SAP system.
Advantage of SAP GRC.
The application allows users to perform activities beyond their normal duties. With preapproved access the user can to the task in a controlled environment which is fully monitored. The log can be automatically sent by email to the risk owner.