SymSoft's new ControlPanelGRC Access Certification Manager Helps Companies Align Security and Business Needs, Meet Auditor Demands
New Module Provides Certification that SAP Access is Appropriate for Employee Job Functions; Integrated Excessive Access, Segregation of Duties, Mitigating Controls into Approval Workflow; Enables Automated Controls, Better Reporting; And Reduces Administrative HeadachesMILWAUKEE – October 19, 2010 – SymSoft Corporation, a provider of Governance, Risk and Compliance (GRC) solutions for SAP® environments, today announced the release of ControlPanelGRC Access Certification Manager, a new module that helps companies align their security and business needs, and comply with auditor demands that employees have access only to Roles or Transactions required for their job functions.On a periodic basis, companies are required by their auditors to certify that security active in their environments meets business needs. Often, employees change jobs and roles in an organization, but their access to data and other corporate tools are not updated to reflect those changes. With Access Certification Manager, generating reports, collecting and approving documentation in support of these changes are done automatically. The ControlPanelGRC certification reports are configurable and include a number of sub-reports, which include a matrix of Role and Transaction assignments, a list of Segregation of Duties (SOD) risks, changes to Users, and changes to Roles. User and Role Owners also can request changes as part of the same process, giving them confidence that Roles are updated and comply with auditor mandates. "Culling data is a tedious process, and creating meaningful reports is an administrative nightmare," said Scott Goolik, SymSoft's Chief Technology Officer. "ControlPanelGRC is one of the first compliance audit software packages to offer these capabilities within the SAP platform. The best part of the solution is that everything happens automatically according to a schedule." Access Certification Manager enables better controls and better reporting, freeing companies to be more strategic with corporate and human assets. Both public and private companies benefit, since they can both face the same level of scrutiny in today's business climate. "ControlPanelGRC Access Certification Manager is another data point in our successful release of a second-generation GRC tool, integrating User access, Segregation of Duty risks, and Excessive Access risks into a single validation environment," said Dan Wilhelms, President and CEO at SymSoft. "Good governance is good business. Even if you are not a public company and not subject to Sarbanes-Oxley requirements, the new module gives executives peace of mind that employees have access to only those areas of the SAP environment necessary to perform their jobs." "Access Certification Manager addresses the cumbersome, manual processes faced by many companies to review roles, responsibilities and access," said Christina Crone, Director of Business Technology for Pentair, Inc. "ControlPanelGRC will enable us to automate these activities for the strategic benefit of the organization." "An employee could have access to many Roles without a single SOD conflict," Goolik said. "But the bottom line is that there still is a problem if someone has access to business Transactions they should not have. Periodic access certification through the new ControlPanelGRC module identifies potential issues and allows you to automate the remediation." About SymSoft Milwaukee-based SymSoft Corporation offers professional solutions for compliance automation. ControlPanelGRC, its second-generation Governance, Risk and Compliance (GRC) suite of modular, integrated applications, addresses the major areas of compliance concern at every corporate level for SAP users, especially in heavily-regulated industries. Developed by SymSoft and supported by Symmetry Corporation's 14 years of SAP experience, ControlPanelGRC provides an affordable, robust toolset with functionality not available from first generation products. As a result, executives can satisfy compliance requirements while workflows for SAP Security and Technical administration are accelerated for improved productivity and responsiveness. For more information about ControlPanelGRC, visit www.controlpanelGRC.com. SAP and all SAP logos are trademarks or registered trademarks of SAP AG in Germany and in several countries. All other products and service names mentioned are the trademarks of their respective companies. |
Resources
Upcoming Webinars:
The Important of an ERP Security "Health Check" to Your Compliance Program
This webcast will address key strategies and tools that can be used to detect and monitor specific risk areas. In addition to continuous controls monitoring software, many companies are also conducting "physicals" or "health checks" of their ERP security. Uncovering ERP security risks doesn't need to be expensive , time-consuming, or difficult, but it does require vigilance and a commitment to leverage sound ERP monitoring strategies. Read More!
Thursday May 31st, 2012
2:00 - 3:00 EDT
Brochures:
ControlPanelGRC™ Security Health Check
Identify your SAP Security Risks. Contact us and we will provide you with a checklist of data we need. We will run the data through the ControlPanelGRC Risk Analysis Engine. Within a couple of weeks, we'll provide you with a report that contains more than 40 charts and graphs that assess your specific security risk areas. Read More
White Papers:
Tackling the SAP Transport "Wish List" with Automated Compliance Reporting
Lets face it SAP administrators have a tough job - keeping the enterprise's system of record up and running efficiently is important to keeping the infrastructure for a large city operating. As a result of many interviews with SAP administrators over the years, ControlPanelGRC has devised a "wish list" to automate compliance reporting. Keeping that in mind here are some of the obstacles that need to be resolved before the automation compliance report can happen. Read More
Join Our Mailing List
Sign up now for ControlPanelGRC's email updates
