|
Related Resources - External and Internal Controls
Articles
by Anurag Barua, Senior Manager
GRC Expert - Volume 3 (2010), Update 4 Learn a few selected application controls in the order-to-cash area and their importance from an audit perspective. Understand mitigation measures in case these controls are inadequate.
by Frank Rambo, Director, Regional Implementation Group (RIG) EMEA, SAP GRC
GRC Expert - Volume 3 (2010), Update 2 Costs for compliance and fraud prevention have risen significantly in recent years and with the current economic situation we’re likely to manage more regulations in the future, further driving costs up. Companies relish efficiency in the GRC space to garner the true benefits of compliance. One means of more efficient compliance is an integrated solution called Risk-Based Internal Control, which helps ensure continuous compliance with regulatory requirements and company policies including government mandates, industry standards, and internal policies.
by Steve Biskie,
Founder,
SAPAuditSolutions.com
GRC Expert - Volume 2 (2009), Update 1 Having to go back and change your SAP system or your related business processes to deal with audit concerns takes time away from your daily operations and results in unnecessary distractions. By configuring your SAP system appropriately and designing your related business processes to effectively address your business risks, you can save significant effort. This article provides an overview of how to set up your SAP system properly the first time. Learn how understanding common business risks and typical audit concerns and carefully managing the SAP implementation process to account for these risks and concerns can eliminate nearly 90% of all audit findings.
by Frank Rambo, Director, Regional Implementation Group (RIG) EMEA, SAP GRC
GRC Expert - Volume 2 (2009), Update 7 SAP BusinessObjects Access Control identifies and prevents access and authorization risks in cross-enterprise IT systems to prevent fraud and reduce the cost of continuous compliance and control. The User Access Review (UAR) feature of SAP BusinessObjects Access Control 5.3 automates and documents the periodic decentralized user access review by business managers or role owners. It provides a workflow-based review and approval process. Follow a process flow during a UAR to see its business benefits, configuration, recommended usage of the feature, and workflow options.
by Steve Biskie, Founder, ERPAuditSolutions.com
GRC Expert - Volume 2 (2009), Update 6 To have an efficient and effective control design process, certain risk and control activities need to occur during the implementation process. These activities reduce the potential for audit issues and minimize future rework. By following this strategy you significantly increase the likelihood of having a successful implementation and a pain-free audit.
by Raj Behera, Manager, Regional Implementation Group (RIG), SAP GRC
GRC Expert - Volume 2 (2009), Update 5 SAP BusinessObjects Access Control’s Risk Analysis and Remediation (RAR) capability generates the rule library for segregation of duties and performs the access risk analysis for the user. SAP BusinessObjects Process Control manages the controls for each business process. Integrating the two applications allows you to control both of these functions from SAP BusinessObjects Process Control.
by Raj Behera, Manager, Regional Implementation Group (RIG), SAP GRC
GRC Expert - Volume 2 (2009), Update 4 See how to integrate SAP BusinessObjects Access Control and SAP BusinessObjects Process Control. You can optimize reporting practices, consolidate segregation of duties issues, and troubleshoot any potential problems using these two applications.
by Hari Srinivasan, Senior Principal, Inforte
GRC Expert - Volume 2 (2009), Update 3 Follow the setup for building and executing controls in SAP NetWeaver BW in the context of a real-life media-specific business process.
by Thomas Tsan, Owner, TK Consultants, Inc.
GRC Expert - Volume 2 (2009), Update 2 Simplify user provisioning by using a role-based risk control strategy and a four-tier architecture model that weighs the importance of different kinds of roles.
by Frank Rambo, Director, Regional Implementation Group (RIG) EMEA, SAP GRC
GRC Expert - Volume 2 (2009), Update 2 Audit-proof your daily user management with SAP GRC Access Control’s Compliant User Provisioning capability. Learn about its main features and see an example of how to set it up for requesting, approving, and providing access to your business target systems.
Books
This book is designed to help SAP project managers, implementation teams, administrators, and Explains best practices for SAP system security Offers examples and so Understand how your controlling processes relate to SAP Discover the many f Are you a member of your company's tax department or SAP implementation team? Perhaps you are a tax consultant working... Understand how SAP Project S
White Papers
In this IDC White Paper, we discuss some of the key trends taking place in the enterprise mobility landscape today, such as consumerization of IT, the mobile application explosion, and cloud computing. ...This SAP-SAPinsider conference session, recorded at PLM 2013 in Las Vegas, steps through real-world examples from SAP® customers who have instituted standard enterprise project and portfolio management ...Whatever your business’s goal — whether it is delivering exceptional customer experiences, optimizing the supply chain, improving procurement processes, growing talent, maximizing operating capital, ...Now more than ever, the speed with which corporations can make financial decisions has a direct impact on bottom-line profits. However, several factors can hinder the ability to make these kinds of ...In this whitepaper, Forrester shares the insights of over 60 companies, vendors, and mobile experts. Learn how mobility is the manifestation of a shift to new systems of engagement, and why the first ...Today, companies face a unique challenge: how to embrace the mobility paradigm for competitive advantage while still advancing the robust capabilities of their trusted enterprise systems. CIOs are ...For many companies, securing their SAP® system was long regarded merely as a synonym for Segregation of Duties (SoD) controls. While this is an imperative in securing SAP platforms, there are additional ...This SAP-SAPinsider conference session, recorded at Admin & Infrastructure 2013 in Las Vegas, examines critical areas to address for delivering responsive, secure and highly available SAP applications ...A new report presents the results of a market research survey of 500+ SAP® customers commissioned by Worksoft Inc., and performed by an independent third party to study the state of test automation ...How confident are you in the risk management systems your organization uses to ensure safe and reliable operations? Lack of a systematic, effective approach to controlling safety, health and environmental ...
Multimedia
This course provides updated strategies, best practices, and comprehensive education for APO, demand planning,...
This course provides expert advice, guidelines, best practices and strategy for successfully utilizing SAP...
This multimedia training course provides expert guidance for getting the most out of costing, planning, and...
This multimedia training course provides expert guidance for optimizing payroll and time management practices with...
This course provides tools, guidelines, and best practices for project managers or teams that plan, manage, or...
Blogs
By Matt Moore on May 20, 2013
While we count down the days until Jan Gardiner from SAP and Steve Biskie from High Water Advisors present at GRC 2013 in Amsterdam, here are a couple interviews to tide you over. During the Las Vegas More...
By Kristine Erickson on April 29, 2013
In his session at GRC 2013, compliance and security Marc Jackson makes the case for auditing your SAP GRC systems – something not to be overlooked in your system audits.
In a recent online Q&A More...
By Kristine Erickson on April 21, 2013
Despite their busy schedules at GRC 2013 in Las Vegas, Turnkey Consulting’s Richard Hunt and Troy Konison took a few minutes to talk with SAPinsider’s Dave Hannon about a key question for More...
By The Tip Doctor on October 22, 2012
How do you not only ensure that your implementation is compliant, but that it remains so over its lifetime?
This is the question addressed in the GRC 2012 session “Lessons for Ensuring Your New More...
By Steve Sprague on September 13, 2012
There is a small storm of activity coming in the next 18 months. And even though it is hurricane season, I am not speaking about rain and wind. I am speaking about the transition from CFD to CFD More...
Forums
By Allison on September 15, 2011 at 10:40AM
By Allison on February 13, 2012 at 1:26PM
By Allison on March 9, 2011 at 10:41AM
By Matt Moore on May 15, 2013 at 8:46AM
Groups
Photos
No matching Photos were found.
Videos
No matching Videos were found.
Profiles
No matching Profiles were found.
|
|
