Your SAP Resource  »  Publications  »  SAP Experts  »  GRC Expert Online

Log In  |  Help

GRC Expert

SAP governance, risk and
compliance — concepts, technology,
and best practices

Part of the
SAP Experts
knowledgebase

Subscribe/Renew Now

Browse by Category  |  Advanced Search »

Go

Home

Knowledgebase Overview

Article Index  |  PDF

Free Sample Article

Frequently Asked Questions

Downloads

Webinars

GRC 2010 Conference

SAP Insider Event Calendar

SAP Experts Knowledgebases

About Us

Contact Us

Categories  »  Risk Management

Risk Management

  1. 5 Tips for Securing Communication Between SAP Systems and External Programs
    by Kehinde Eseyin, Systems Support Manager, TOTAL Nigeria PLC, Nigeria (July 2010)

    Learn how to prevent the illegal and malicious starting of external programs in your SAP environment.

  2. 6 Tips for Going Global with Extra Savoir-Faire
    by Charles Eubanks, Senior Manager, SAP HR Integration, ARINSO International

    Whether you’re just beginning a global project or are already supporting SAP HR in multiple countries, this advice will help keep your project on the right track.

  3. 7 Standard SAP Reports for Audit Information
    by Anurag Barua, Independent Consultant

    Many SAP users think that only third-party tools can carry out a security audit of your SAP system. If you know where to look in your SAP system, you can find some hidden gems that provide you with information that auditors want. See seven standard reports that you can use to better prepare for your audit.

  4. Combat Chaos with a Lock-Down Security Policy in 12 Key Areas of Your SAP Environment
    by Kehinde Eseyin, Systems Support Manager, TOTAL Nigeria PLC, Nigeria (June 2009)

    Security policies and procedures should be a central concern of all employees of an organization. Review important areas of the SAP ERP system that has to be driven by effective security policies.

  5. Combine SAP Strategy Management and GRC Risk Management for Risk-Intelligent Strategic Execution
    by Dr. Karol Bliznak, SAP AG

    In most organizations, strategic management and risk management are completely separate processes. As a result, it’s often difficult to track strategic goals over time while assessing the risks that might affect strategic initiatives. With an integrated approach to strategy and risk management, you can ensure that business owners are focusing on the right initiatives both to drive execution of strategy and manage risk.

  6. Create and Monitor a Risk-Adjusted Strategy for the Post-Crisis Economy
    by William Newman, Managing Principal, Newport Consulting Group (January 2010)

    As part of its positioning for the corporate boardroom set of enterprise performance management applications, SAP BusinessObjects Strategy Management enables decision makers to access what is happening in real time in the organization, while leveraging any existing back-office enterprise software investments. Learn how to address risk in the development of go-forward strategies in the post-crisis economy through the features available in SAP BusinessObjects Strategy Management.

  7. Define Risks and Functions with Risk Analysis and Remediation Rule Architect
    by Jayne Gibbon, Director of SAP GRC Support, SAP (April 2009)

    Discover the makeup and functionality of Rule Architect within SAP BusinessObjects Access Control Risk Analysis and Remediation.

  8. Demystify Authorization Error Analysis in Transaction SU53
    by Anurag Barua, Senior Manager

    Analyze access considerations for your users and transaction SU53. Examine its capabilities as compared to other transactions and how auditors perceive it when they are looking at your organization’s system.

  9. Enterprise Role Management — The Way to Compliant Role Design
    by Frank Rambo, Director, Regional Implementation Group (RIG) GRC EMEA, SAP BusinessObjects (March 2009)

    Enterprise Role Management helps streamline your role design process with a pre-defined, customizable design methodology that guides you through role definition, authorization maintenance, risk analysis, role approval, and role generation in your SAP back-end systems. It also ensures Sarbanes-Oxley compliance of your roles.

  10. Get Your System Clean with Risk Analysis and Remediation
    by Frank Rambo, Director, Regional Implementation Group (RIG) EMEA, SAP GRC

    Become and stay Sarbanes-Oxley compliant with Risk Analysis and Remediation. Learn about its main features, technical architecture, and setup.

  11. Identify Fraud Risks with Forensic Audit Queries
    by Bryan Wilson, President, Acumen Control ERP, Inc.

    Audit committees, management, investors, regulators, and external auditors expect your business process controls to be effective, efficient, and testable. See how to extend your GRC functionality to identify control exceptions in your SAP system by locating data in SAP tables and running forensic audit queries.

  12. Implement 5 Key Controls to Mitigate Risk in Your Financial Closing Process
    by Anurag Barua, Senior Manager

    See five scenarios that commonly produce risk — and how to address them with configuration.

  13. Increase the Success Rate of Your Strategies and Initiatives through an Enterprise Risk Management System
    by Frank Rambo, Director, Regional Implementation Group (RIG) EMEA, SAP GRC (September 2010)

    Many risk managers complain about a lack of enterprise insight and alignment of risk management to the strategic objectives of their organization. With a rather manual and inconsistent approach based on emails and spreadsheets, they often fail to oversee the impact of risks to the strategic goals and whether appropriate risk responses were implemented to mitigate risks. SAP BusinessObjects Risk Management 3.0 is an enterprise-scalable, near real-time, integrative solution to align enterprise risk management with corporate strategy initiatives, and effectively mitigate risk. Learn how it optimizes corporate performance, maximizes visibility of risk impacts and effectiveness of risk responses, and sends out early alerts through automated monitoring of key risk indicators.

  14. Internal Controls: The Journey From Compliance to Risk Management
    by Gary Dickhart, SAP

    See how to make compliance more operational with a more preventative, integrated approach that emphasizes risk management over compliance. By embedding more controls into this approach, your organization achieves greater efficiency and lower compliance testing costs than in the more manual report and review model that many companies use.

  15. Monitor Sensitive Fields with R/3's Dual Control Functionality
    by Drs. Stef Cornelissen, SAP Consultant, Proxyon B.V

    The standard SAP dual control principle imposes segregation of duties for changes to sensitive fields while allowing changes to be made by one person to non-sensitive fields.

  16. Optimize Application Integration by Running Risk Analysis and Remediation for SAP NetWeaver Portal
    by Frank Rambo, Director, Regional Implementation Group (RIG) EMEA, SAP GRC (September 2009)

    The Web-based environment of SAP NetWeaver Portal provides business users in your organization secure access to a wide array of SAP and non-SAP applications, information, and services, such as SAP ERP, analytics, business intelligence, and document repositories. The diversity of content delivered to your business users through SAP NetWeaver Portal may come with user access-related risks to analyze, monitor, and mitigate. Learn how to integrate SAP NetWeaver Portal into SAP BusinessObjects Access Control 5.3 and include it in your risk analysis and risk mitigation.

  17. Optimize Data Management in All Phases of Your SAP Implementation
    by Gerry Miller, Retired Principal, Darwin Deano, Senior Manager, and Lindsey Berckman, Consultant, Deloitte Consulting LLP (June 2010)

    Poor data management can lead to many problems, from incorrect data, to a lack of integration, to bad analysis. Learn ways an effective data management strategy can help you in your efforts to optimize your system’s performance while increasing your compliance and reducing cost.

  18. Part 1: Handle Foreign Currency Risk with SAP Exposure Management
    by Gopa Kumar, Senior Consultant, and Ajay Furtado, Principal Consultant, Fourth Signal (December 2008)

    Discover the features in SAP Exposure Management that help you mitigate risk and maintain hedge procedures in part 1 of a two-part series on the functionality.

  19. Part 2: Handle Foreign Currency Risk with Exposure Management
    by Gopa Kumar, Senior Consultant, and Ajay Furtado, Principal Consultant, Fourth Signal (February 2009)

    Analyze and properly maintain your exposures in SAP Exposure Management before transferring them to SAP Hedge Management.

  20. Program Risk and Change Management for SAP BusinessObjects GRC and EPM Solutions
    by William Newman, Managing Principal, Newport Consulting Group (June 2010)

    SAP BusinessObjects enterprise performance management (EPM) solutions provide a transparent approach to strategic decision making in the organization. Best practices in the implementation of these and SAP BusinessObjects GRC solutions can reduce and mitigate risks during program deployment activities.

  21. Protect Sensitive Personal Information in SAP HR
    by Greg Robinette, SAP HR and HR Privacy Consultant, Robinette Industries and Consulting LLC

    The SAP HR system often inadvertently exposes sensitive information. Follow this procedure to keep employees’ personal information such as Social Security numbers and other unique identifiers out of the wrong hands.

  22. Quick Tip: 3 Ways to Save Money While Improving Your GRC Processes
    by Francine McKenna, President, McKenna Partners, LLC

    See three GRC initiatives your company can use to ensure quick, efficient responses to legal requirements.

  23. Quick Tip: 4 Tips to Reduce Hardware Costs by Making Your Processors More Sustainable
    by Judith M. Myerson (July 2010)

    Achieving hardware sustainability is about reducing energy use. See how to do this by improving processor performance and process improvements.

  24. Quick Tip: 5 Steps to Accept or Reject Residual Risks
    by Judith M. Myerson, President/Owner (September 2009)

    Follow a five-step process in SAP BusinessObjects Risk Management for evaluating risks that remain in your system and may threaten your compliance with major regulations.

  25. Quick Tip: Mitigating (Human) Resource Risk in an SAP Implementation
    by Anurag Barua, Director of Consulting, EDC Consulting

    See solutions to human resource issues that frequently contribute to risk within your SAP team.

  26. Quick Tip: Toggle Variant Protection Settings to Allow or Prevent Unauthorized Changes
    by Mitresh Kundalia, Director, SAP Practice, Quality Systems & Software

    Learn how to manage variants so that they are protected from unauthorized changes.

  27. Reduce Costs in Compliance Management with a Top-Down, Risk-Based Scoping Approach
    by Frank Rambo, Director, Regional Implementation Group (RIG) EMEA, SAP GRC (April 2010)

    With the requirement of identifying and assessing the design and operating effectiveness of internal controls many companies have ended up producing too much documentation and performing more testing, resulting in increased costs of compliance. Regulatory agencies such as the US Securities and Exchange Commission and the Public Company Accounting Oversight Board (PCAOB) encourage companies to focus on areas where there is the greatest risk that internal controls over financial reporting would fail to prevent or detect a material misstatement in the financial statements. SAP BusinessObjects Process Control 3.0 supports a top-down, risk-based scoping based on Audit Standard 5 by PCAOB. Learn how these scoping instruments work and provide a powerful scoping method when applied in combination.

  28. Reduce Help-Desk Queries with 3 Ways to Improve Access Enforcer Usability
    by Jean-Paul Calabio, Senior SAP Security/GRC Consultant, DGN Technologies, Inc.

    Realize your Access Enforcer ROI by implementing usability best practices that can significantly reduce users’ dependence on the help desk.

  29. Reduce Risk in Your Supply Chain with Supply Chain Performance Management
    by William Newman, Managing Principal, Newport Consulting Group (March 2010)

    As part of its positioning for the corporate boardroom set of enterprise performance management applications, SAP BusinessObjects Supply Chain Performance Management enables full visibility of the value chain using metrics and indicators. Learn how to reduce risks in material and intellectual property flow in your supply chain and create a more effective organization using the features available in SAP BusinessObjects Supply Chain Performance Management.

  30. Reduce Your Procurement Risks with Spend Analytics
    by William Newman, Managing Principal, Newport Consulting Group (February 2010)

    As part of its positioning for the corporate boardroom set of enterprise performance management applications, SAP BusinessObjects Spend Performance Management enables financial and procurement decision makers to have full visibility into both managed and unmanaged spend in the enterprise and throughout the supply chain. Learn how to reduce procurement risks in your supply chain and create a more effective organization in the post-crisis economy through the features available in SAP BusinessObjects Spend Performance Management.

  31. Remediate Issues within Financial or Operational Compliance Initiatives in a Single System of Record
    by Frank Rambo, Director, Regional Implementation Group (RIG) EMEA, SAP GRC (August 2010)

    Too often, controls are managed using inadequate tools (e.g., point solutions, document repositories, and spreadsheets) that require too much manual tracking and updating. With SAP BusinessObjects Process Control 3.0, you can streamline issue identification and remediation with automated task notification and workflow-driven remediation plans.

  32. Sarbanes-Oxley: Seven Steps to Ensure Your Internal Controls Cover Your Risk
    by Taylor Erickson, Senior Principal, Virtuoso, LLC

    As the deadlines approach, does your SAP financials team have a plan in place for compliance with the Sarbanes-Oxley Act (SOA) of 2002? No? That's not unusual, as many companies are struggling to learn what system and process changes the Act will require. But where do you begin this learning process? The author provides a seven-step method to assess how your FI/CO system measures up.

  33. Set Up Preference Processing to Delineate Customs Tariff Priorities and Manage Risk with Global Sourcing
    by Rajen Iyer, Practice and Program Head, Kryaa

    This walk-through of the configuration steps for Preference Processing within SAP GRC Global Trade Services Risk Management shows how to address tariff preferences in your trade application and systems. It includes setting up the communication between SAP GRC Global Trade Services and SAP ERP Central Component.

  34. Sidestep Disasters with a Business Continuity Plan
    by Judith M. Myerson, President/Owner (October 2009)

    You need to have a plan in place if a risk assessment shows that the likelihood of an emergency event (e.g., severe storms or earthquakes) occurring is high. A business continuity plan allows an organization to minimize the consequences of a disaster and continue normal business functions afterward.

  35. Speed Up Security Testing Using eCATT
    by Jayesh Narwaney, Senior SAP Support Specialist

    The Extended Computer Aided Test Tool (eCATT), successor of SAP’s CATT, can test a wide range of SAP applications running in the SAPGUI for Windows or Java environments. It can also access data in the database (including customizing data) and ABAP coding on the application server. See how to use eCATT to speed up testing over multiple users.

  36. Start Your Segregation of Duties Risk Mitigation Smart — at the Single Role Level
    by Jayne Gibbon, Director of SAP GRC Support, SAP (September 2009)

    Discover key tools and process steps that assist in the remediation of risks identified at the single role level by SAP BusinessObjects Access Control Risk Analysis and Remediation.

  37. Tackle Option Pricing with SAP NetWeaver BI
    by Daniel C. Wood, Lecturer, Arizona State University, and Lipika Sur, Business System Analyst

    Perform derivative analysis using the Black-Scholes model in the SAP NetWeaver Business Intelligence system to address security concerns.

  38. When to Use Organization Rules and Reporting in Compliance Calibrator
    by Jayne Gibbon, SAP

    Find out if your company should use organization rules for eliminating false positives from reports.

RECENTLY ADDED

Increase the Success Rate of Your Strategies and Initiatives through an Enterprise Risk Management System

Keep Your Order-to-Cash Documents’ Integrity Intact within a Global Trade Compliance Program

Remediate Issues within Financial or Operational Compliance Initiatives in a Single System of Record

Prepare Your SAP System for Electronic VAT Declaration

Improve Traceability with SAP Solution Manager

Subscribe to the RSS feed

Subscribe to the RSS feed.

Copyright © 2010 Wellesley Information Services. All rights reserved. Email: customer.service@grcexpertonline.com.
GRC Expert, 20 Carematrix Drive, Dedham, MA 02026, USA.
Sales and Customer Service: 1-781-751-8799
SAP and the SAP logo are trademarks or registered trademarks of SAP AG in Germany and several other countries.