100% found this document useful (1 vote)

260 views

SAP GRC - Access Control and Process Control

This 4-day course provides both essential knowledge and hands-on learning for auditors working in an SAP GRC environment or involved in its implementation. It covers SAP GRC Access Control and Process Control, including lectures, discussions, case studies and exercises. Topics include access risk analysis, emergency access management, access request management, business role management and more. The course is taught by Deloitte practitioners with real-world SAP GRC experience and aims to explore how an SAP GRC implementation impacts internal auditing.

Uploaded by

Forumnoj

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

100% found this document useful (1 vote)

260 views

SAP GRC - Access Control and Process Control

Uploaded by

Forumnoj

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 5

SAP GRC: Access Control and

Process Control
This course provides an essential knowledgebase, as well as hands-on
learning for internal audit professionals, including information technology
auditors, working in a SAP GRC environment, as well as those involved
in SAP GRC implementation and configuration. Hands-on learning will
be conducted with Access Control and Process Control 10.0.
The curriculum for this dynamic seminar includes lectures, group
discussions, case studies, and practical exercises, allowing participants
to explore the many ways that an SAP GRC implementation impacts
internal auditing.
This course is taught by Deloitte & Touche LLP practitioners with realworld SAP GRC implementation and audit experience.

Course Duration:
4 Days
CPE Hours Available:
36 CPE
Knowledge Level:
Intermediate
Field of Study:
Computer Science
Prerequisites:
Introduction to Auditing SAP ERP, SAP ERP Technical Audit, or requisite
knowledge of SAP
Advance Preparation:
None
Delivery Format:
Group-Live (Seminar, On-site)

Course Outline:
This course will address both SAP GRC Access Control and SAP GRC
Process Control.
SAP GRC Access Control
-

Challenges in Auditing SAP ERP

Segregation of Duties and Restricted Access

GRC Access Control Overview and Navigation

GRC Access Control Landscape and System Setup Audit

Considerations

SAP GRC Access Control Access Risk Analysis (ARA)

Post Installation considerations

ARA Overview of Configuration

ARA Master Data Upload

ARA Rule Set

ARA Background Jobs

ARA Workflow

ARA Risk Terminator

ARA Audit Considerations

o Rule Set Benchmarking
o ARA Scope
o Rule Set change management
o ARA Segregation of Duties

ARA Case Study and Exercises

SAP GRC Access Control Emergency Access Management (EAM)

EAM Post Installation Considerations

EAM Overview of Configuration

EAM Workflow

EAM Audit Considerations

o Emergency vs. Privileged Access
o EAM Segregation of Duties
o EAM Reporting and Monitoring

o EAM Audit Evidence

EAM Case Study and Exercises

SAP GRC Access Control Access Request Management (ARQ)

ARQ Post Installation Considerations

ARQ Overview of Configuration

Workflow Configuration and Settings

HR Triggers

Integration with Identity Management

User Review

SOD Review

Administration Tasks

ARQ Audit Considerations

o ARQ Segregation of Duties
o ARQ Approvers
o ARQ Reporting and Monitoring
o ARQ Audit Evidence

ARQ Case Study and Exercises

SAP GRC Access Control Business Role Management (BRM)

BRM Post Installation Considerations

BRM Configuration Overview

System Landscape

Roles

BRM Workflow and SOD

BRM Audit Considerations

o BRM Segregation of Duties
o BRM Change Management

BRM Case Study and Exercises

SAP GRC Process Control

Enabling the Risk Intelligent Organization

SAP GRC Process Control Functions and Features

Compliance Structure Overview

Control Assessment Overview

Automated Control Monitoring Overview

Compliance Framework Details

Control Details

Master Data Upload Generation Utility

Control Evaluation Setup

Manual Control Evaluations Overview

Automated Control Testing & Monitoring

Analysis and Reporting Review of Results

Process Control Audit Considerations

Case Study and Exercises

Other GRC Audit Considerations

Audit Reports

Security & Change Management

Audit Planning

Case Study Presentations

SOX 404 & IT Controls: IT Control Recommendations For Small and Mid-Size Companies by
100% (2)
SOX 404 & IT Controls: IT Control Recommendations For Small and Mid-Size Companies by
21 pages
GRC Basic-1 PDF
100% (1)
GRC Basic-1 PDF
42 pages
SAP Security Interview Questions, Answers, and Explanations
From Everand
SAP Security Interview Questions, Answers, and Explanations
equitypress
4/5 (3)
Webinar Auditing SAP
No ratings yet
Webinar Auditing SAP
43 pages
Information Security Policy
No ratings yet
Information Security Policy
16 pages
SAP GRC (Basic) ,: Biju (Jays)
No ratings yet
SAP GRC (Basic) ,: Biju (Jays)
42 pages
Sap GRC Access Control 12030241142
100% (1)
Sap GRC Access Control 12030241142
14 pages
Sap GRC Access Control 12030241142
No ratings yet
Sap GRC Access Control 12030241142
14 pages
SAP GRC Access Control - Approach Document Draft v04
No ratings yet
SAP GRC Access Control - Approach Document Draft v04
32 pages
GRC AC Cheat Sheet
No ratings yet
GRC AC Cheat Sheet
1 page
Sap GRC
No ratings yet
Sap GRC
15 pages
What Is User Provisioning in SAP GRC Access Control
No ratings yet
What Is User Provisioning in SAP GRC Access Control
39 pages
Ati - Sap GRC Ac10 Introduction
100% (1)
Ati - Sap GRC Ac10 Introduction
40 pages
Scope of Work SAP GRC 1
100% (1)
Scope of Work SAP GRC 1
7 pages
Auditing SAP GRC PDF
100% (1)
Auditing SAP GRC PDF
45 pages
Integration Access Control With Fiori Apps For S4HANA On-Premise
No ratings yet
Integration Access Control With Fiori Apps For S4HANA On-Premise
5 pages
Sap GRC Risk Analysis and Remediation
0% (1)
Sap GRC Risk Analysis and Remediation
38 pages
AC10 Transactions and Programs
No ratings yet
AC10 Transactions and Programs
31 pages
Sap Security PDF
No ratings yet
Sap Security PDF
8 pages
Segregation of Duties Checklist
No ratings yet
Segregation of Duties Checklist
4 pages
PC 10 SoD Mon Subscenario
0% (1)
PC 10 SoD Mon Subscenario
35 pages
Configure Emergency Access
No ratings yet
Configure Emergency Access
29 pages
Ara
100% (1)
Ara
11 pages
SAP AC 12.0 SP08 Administrator Guide
No ratings yet
SAP AC 12.0 SP08 Administrator Guide
50 pages
SAP GRC10 and Security Video Contents
No ratings yet
SAP GRC10 and Security Video Contents
4 pages
GR C 10 Training
No ratings yet
GR C 10 Training
76 pages
Global Rule Set SOD
No ratings yet
Global Rule Set SOD
14 pages
SAP GRC Access Control
100% (1)
SAP GRC Access Control
23 pages
PC10 MDUG UG v60
No ratings yet
PC10 MDUG UG v60
32 pages
SAP GRC Upgrade Guide
No ratings yet
SAP GRC Upgrade Guide
24 pages
How To Archive in GRC Access Control 10
No ratings yet
How To Archive in GRC Access Control 10
6 pages
SAP GRC Access Control Implementation
No ratings yet
SAP GRC Access Control Implementation
7 pages
Table Level Restriction
No ratings yet
Table Level Restriction
7 pages
GRC - SAP Audit Management
No ratings yet
GRC - SAP Audit Management
9 pages
Upgrade SAP Access Control 10.010.1 To 12.0
No ratings yet
Upgrade SAP Access Control 10.010.1 To 12.0
28 pages
SAP Security
No ratings yet
SAP Security
9 pages
SAP GRC 10.1-12.0 Integration With HANA DB For User Access Provisioning
No ratings yet
SAP GRC 10.1-12.0 Integration With HANA DB For User Access Provisioning
12 pages
SOD
No ratings yet
SOD
2 pages
SAP Authorization Management Guidelines
No ratings yet
SAP Authorization Management Guidelines
3 pages
GRC 12
100% (1)
GRC 12
52 pages
Ac Configuration v1
No ratings yet
Ac Configuration v1
4 pages
GRC 10 Online Training
No ratings yet
GRC 10 Online Training
75 pages
Sap Security Tables Overview PDF
100% (1)
Sap Security Tables Overview PDF
22 pages
Santhosh - SAP GRC
No ratings yet
Santhosh - SAP GRC
3 pages
Background Jobs in Risk Analysis and Remediation 5
No ratings yet
Background Jobs in Risk Analysis and Remediation 5
8 pages
GRC 10 Configure Emergency Access
No ratings yet
GRC 10 Configure Emergency Access
16 pages
Optimize Your Access Risk Analysis Reports For SAP S/4HANA and SAP Fiori
No ratings yet
Optimize Your Access Risk Analysis Reports For SAP S/4HANA and SAP Fiori
42 pages
Security: Tier I Audit Guide
No ratings yet
Security: Tier I Audit Guide
6 pages
SAP Security Questions
No ratings yet
SAP Security Questions
21 pages
SAP Technical Engineer - Specialisation Area: Security
No ratings yet
SAP Technical Engineer - Specialisation Area: Security
2 pages
A Case Study in IT Audit's Program Risk Management Role On A Large-Scale System Implementation
No ratings yet
A Case Study in IT Audit's Program Risk Management Role On A Large-Scale System Implementation
4 pages
Sap BRM
No ratings yet
Sap BRM
13 pages
Access Control 10.0 - Master Guide PDF
0% (1)
Access Control 10.0 - Master Guide PDF
24 pages
SAP MDM A Complete Guide
From Everand
SAP MDM A Complete Guide
Gerardus Blokdyk
No ratings yet
M1.2: Define Information Technology Processes
From Everand
M1.2: Define Information Technology Processes
Elizabeth Mogopodi
No ratings yet
Separation Of Duties A Complete Guide - 2020 Edition
From Everand
Separation Of Duties A Complete Guide - 2020 Edition
Gerardus Blokdyk
No ratings yet
SAP XI Exchange Infrastructure
From Everand
SAP XI Exchange Infrastructure
equitypress
1/5 (3)
SAP Solution Manager A Complete Guide
From Everand
SAP Solution Manager A Complete Guide
Gerardus Blokdyk
No ratings yet
Disaster Recovery Business Continuity Complete Self-Assessment Guide
From Everand
Disaster Recovery Business Continuity Complete Self-Assessment Guide
Gerardus Blokdyk
No ratings yet
SAP NetWeaver Portal A Clear and Concise Reference
From Everand
SAP NetWeaver Portal A Clear and Concise Reference
Gerardus Blokdyk
No ratings yet
SAP NetWeaver Third Edition
From Everand
SAP NetWeaver Third Edition
Gerardus Blokdyk
No ratings yet
ISO 38500 Complete Self-Assessment Guide
From Everand
ISO 38500 Complete Self-Assessment Guide
Gerardus Blokdyk
2/5 (1)
Sac - Case Studies 1427401
No ratings yet
Sac - Case Studies 1427401
14 pages
x1607 Facebook Accounts (Freshly Cracked)
No ratings yet
x1607 Facebook Accounts (Freshly Cracked)
82 pages
About Blank
No ratings yet
About Blank
4 pages
GSMA SAS SM Self Assessment CSPs v1.4
No ratings yet
GSMA SAS SM Self Assessment CSPs v1.4
420 pages
Professional Series Access Modules The PRO4200 Professional Series Family of Access Control Modules Is Designed For High Density Installations
No ratings yet
Professional Series Access Modules The PRO4200 Professional Series Family of Access Control Modules Is Designed For High Density Installations
4 pages
National ID Authentication Services 1st Presentation June 2024
No ratings yet
National ID Authentication Services 1st Presentation June 2024
42 pages
HikCentral-Professional V1.7.1 Datasheet 20201125
No ratings yet
HikCentral-Professional V1.7.1 Datasheet 20201125
9 pages
Aadhaar Enrolment Correction Form Version 2.1
No ratings yet
Aadhaar Enrolment Correction Form Version 2.1
1 page
Audit Trail
No ratings yet
Audit Trail
1 page
CISSP Vocabulary
No ratings yet
CISSP Vocabulary
4 pages
Smart Contract Security Checklist
No ratings yet
Smart Contract Security Checklist
19 pages
smart door lock system (1)_190821225519
No ratings yet
smart door lock system (1)_190821225519
8 pages
Nx4s1 Manual de Instalacion
No ratings yet
Nx4s1 Manual de Instalacion
79 pages
Operating & Installation Instructions For ACT1000/2000 Access Control Units
No ratings yet
Operating & Installation Instructions For ACT1000/2000 Access Control Units
35 pages
Flipper Zero Activity NSC
100% (4)
Flipper Zero Activity NSC
3 pages
Sigma Control 2 9 - 9450 - 00use-Tcm8-285058
No ratings yet
Sigma Control 2 9 - 9450 - 00use-Tcm8-285058
204 pages
01 - Access Control System - (MS-ELC-3778-0)
No ratings yet
01 - Access Control System - (MS-ELC-3778-0)
10 pages
Data Classification Template
No ratings yet
Data Classification Template
4 pages
KF460 English
No ratings yet
KF460 English
2 pages
Aadhar Rani
0% (1)
Aadhar Rani
1 page
Screenshot 2023-12-17 at 8.28.35 AM
No ratings yet
Screenshot 2023-12-17 at 8.28.35 AM
10 pages
Traduccion de Pases de Ley
No ratings yet
Traduccion de Pases de Ley
3 pages
Admit_Card_1008148184_19-01-2025 12_05_07
No ratings yet
Admit_Card_1008148184_19-01-2025 12_05_07
1 page
Real ID Checklist
No ratings yet
Real ID Checklist
3 pages
RTC Ticket
No ratings yet
RTC Ticket
2 pages
Car Insurance Management System ERD
No ratings yet
Car Insurance Management System ERD
1 page
DSS Express and DSS Professional - Upgrade Guide - V8.1.1 - 202208122
No ratings yet
DSS Express and DSS Professional - Upgrade Guide - V8.1.1 - 202208122
36 pages
All FTD+FMC
No ratings yet
All FTD+FMC
157 pages

Uploaded by

Uploaded by

SAP GRC: Access Control and

Challenges in Auditing SAP ERP

Segregation of Duties and Restricted Access

GRC Access Control Overview and Navigation

GRC Access Control Landscape and System Setup Audit

SAP GRC Access Control Access Risk Analysis (ARA)

Post Installation considerations

ARA Overview of Configuration

ARA Master Data Upload

ARA Rule Set

ARA Background Jobs

ARA Risk Terminator

ARA Audit Considerations

ARA Case Study and Exercises

SAP GRC Access Control Emergency Access Management (EAM)

EAM Post Installation Considerations

EAM Overview of Configuration

EAM Audit Considerations

o EAM Audit Evidence

EAM Case Study and Exercises

SAP GRC Access Control Access Request Management (ARQ)

ARQ Post Installation Considerations

ARQ Overview of Configuration

Workflow Configuration and Settings

Integration with Identity Management

ARQ Audit Considerations

ARQ Case Study and Exercises

SAP GRC Access Control Business Role Management (BRM)

BRM Post Installation Considerations

BRM Configuration Overview

BRM Workflow and SOD

BRM Audit Considerations

BRM Case Study and Exercises

SAP GRC Process Control

Enabling the Risk Intelligent Organization

SAP GRC Process Control Functions and Features

Compliance Structure Overview

Control Assessment Overview

Automated Control Monitoring Overview

Compliance Framework Details

Master Data Upload Generation Utility

Control Evaluation Setup

Manual Control Evaluations Overview

Automated Control Testing & Monitoring

Analysis and Reporting Review of Results

Process Control Audit Considerations

Case Study and Exercises

Other GRC Audit Considerations

Security & Change Management

Case Study Presentations

You might also like