Search

What is SAP GRC? SAP GRC (governance, risk, and compliance) is a set of solutions and products that help you manage enterprise resources in a way that minimizes risk, builds trust, and lowers compliance costs. Products like SAP Risk Management, SAP Process Control, and SAP Audit Management let you automate GRC activities, improve control and…

The recent announcement from SAP regarding discontinuing support for its SAP Identity Management (IDM) product has left many organizations searching for alternative Identity and Access Management (IAM) solutions. As SAP customers embark on this transitional phase, a structured approach to selecting a new vendor becomes paramount. Here’s a guide to navigating this journey: Understanding the…

In the past month, I’ve chaired a couple of roundtable sessions with senior executives in internal audit and SOX compliance roles at major global companies. Reflecting on the key takeaways, proactive risk management and reducing the manual workload placed on their teams were consistent talking points. Virtually everyone cited the need for automation to step…

SAP published 10 new and two updated Security Notes for June 2024 Patch Tuesday. Compared to May’s SAP Security Patch Day release, this month’s release contains fewer patches overall and with lower severity. Only two Security Notes received the High Priority designation (CVSS scores ranging from 7.0 to 8.9), and both are new notes. The…

When it comes to ensuring that team members have the correct access to applications and data, both ABAC (Attribute-Based Access Control) and RBAC (Role-Based Access Control) effectively regulate access. Since each brings its own strengths and weaknesses to the table, it’s not about finding a superior model, but rather the right fit for your organization’s…

SAP has recently announced that the maintenance for SAP Identity Management (SAP IDM), their on-premises solution for managing the identity lifecycle, will cease in 2027. While an extended maintenance period will be available until 2030, businesses using this solution will have to start working on a transition plan soon. Since identity and access are the…

According to the NIST Cybersecurity Framework, the ability to identify, detect, prevent, respond, and recover are important control capabilities for organizations to maintain in the constant battle to effectively manage access management policies, risks, and compliance requirements. In the past, one of the most effective ways to achieve this was by deploying Identity and Access…

Traditional audits are the bane of many organizations. They’re synonymous with stress, long hours, and a frantic scramble to gather evidence, track down documents, and manually verify the effectiveness of internal controls. It’s a massive undertaking that often pulls employees away from their core responsibilities, causing significant disruption. To alleviate the pressure, companies frequently turn…

SAP systems are the backbone of many businesses, but their full potential often remains untapped. ABAP, a powerful programming language specifically designed for SAP, empowers you to unleash your system’s true potential. This article explores everything you need to know about ABAP in SAP, from its history and core functionalities to the critical security measures…