Risk Analyzer
|
ControlPanelGRC Risk Analyzer provides real-time SAP® risk analysis as well as remediation and mitigation of authorizations for segregation of duty, sensitive authorization and excessive access risks.
Function Based Approach for Easy AnalysisRisk Analyzer utilizes a function-based approach to defining and analyzing risks in SAP rather than a transaction based segregation of duties (SOD) matrix. This approach eliminates "false positives" by reducing the amount of redundant information contained in reports, making them faster to run and easier to understand by people in the business. Comprehensive, Easily Understandable RulebooksThe Risk Analyzer rulebook contain a core set of the most frequently used sensitive authorization and segregation of duty rules common to all industries. Risk Analyzer defines risks as conflicting functions versus conflicting transaction pairs and provides a detailed, plain English description of all issues that are immediately actionable by personnel. The rulebooks are extensible and can easily be customized to meet specific business or auditor requirements. Risk Modeling, Monitoring, Remediation, and MitigationA "what-if" modeling analysis assists in identifying potential risks when new roles are assigned to users, new transactions are assigned to roles or new authorizations are assigned to roles or users. Effortlessly Maintain Compliance and Reduce Audit Preparation CostsManually running SAP risk analysis reports and following up with reviewers requires considerable time and resources. Risk Analyzer significantly reduces the time, cost, and frustration of maintaining compliance with automated monitoring and a built in workflow to ensure the documented review of audit critical reports. Real-time Notification of IncidentsRisk Analyzer provides managers with real-time notification of executed risks within the SAP system. This allows for an immediate review of the incident and documentation of the mitigating actions taken before it is too late. Reduce Resource Burden on Security and Internal Audit TeamsControlPanelGRC Risk Analyzer's integrated reporting functions significantly reduce the burden and cost of establishing and maintaining clean security architecture. |
Resources
Archived Webinars:
How to be a Security and SoD Expert When It's Not Your Full-Time Job
Join the ASUG Small and Medium Enterprise SIG for this webcast on security and separation of duties - an encore presentation from this year's ASUG Annual Conference. Watch on Demand
How Abiomed Reduced the Time, Effort and Expense of SOX Reporting
Sharon Kaiser, CIO at Abiomed shows how she able to turn audit pain into gain with several strategies to lower Abiomed's total cost of compliance. Watch On Demand
Case Studies:
ControlPanelGRC Adds Value to Graham Packaging's GRC Efforts
Learn how Graham Packaging went from a difficult to implement, expensive and ultimately under-utilized first generation compliance tool to achieving full value from the system and payback in less than a year with ControlPanelGRC. Read More
White Papers:
Five Question to Ask Before Migrating to SAP® GRC 10.0
Have you thought about a migration to SAP® GRC 10.0 yet? The changes to your system that will happen could be extensive enough to warrant a “re-implementation" rather than just a simple software upgrade. Many companies are taking the next step and migrating straight to SAP GRC 10.0, but most are doing so without answering some very strategic questions about it. Read More
Five Signs That a New SoD Compliance Strategy Needs to be Implemented
SoD compliance in 2012 is not the same as it was in 2002. SoD strategies or solutions that worked ten years ago have become unmanageable for many organizations because "first generation" GRC tools and manual processes have not been able to keep up with auditor demands in 2012. Read More
Join Our Mailing List
Sign up now for ControlPanelGRC's email updates
