Become and stay Sarbanes-Oxley compliant with Risk Analysis and Remediation. Learn about its main features, technical architecture, and setup.
SAP GRC Access Control delivers controls that identify and prevent access and authorization risks in cross-enterprise systems. The controls prevent fraud and reduce the cost of continuous compliance and control. SAP GRC Access Control enables all corporate compliance stakeholders — including business managers, auditors, and IT security managers — to collaboratively define and oversee proper segregation of duties enforcement, enterprise role management, compliant provisioning, and super user privilege management. These focus areas of access controls correspond to the four key product capabilities of SAP GRC Access Control: Risk Analysis and Remediation, Enterprise Role Management, Compliant User Provisioning, and SuperUser Privilege Management.
The Risk Analysis and Remediation (RAR) capability of SAP GRC Access Control helps you run risk analysis and clean your back-end business systems from segregation of duties (SoD) violations. I'll show you how to efficiently set up and use RAR so that you can become, in minimal time, compliant with regulations such as Sarbanes-Oxley.
I'll start with an overview of the main features of RAR and discuss its technical architecture before guiding you step by step through the setup of the software. Then I'll provide some preferred practices on how to approach the cleaning of your business applications from SoD violations.