GRC: Case study: How Revlon completed a global security redesign on an accelerated timeline

  • by Betina Bell, Revlon
  • March 10, 2019
Learn how Revlon implemented a scalable segregation-of-duties-compliant role architecture in alignment with its GRC ruleset and business processes in its SAP environment.

Revlon planned and executed a global SAP security redesign within just a few months. Learn how the company implemented a scalable segregation-of-duties-compliant role architecture in alignment with its GRC ruleset and business processes, and learn tips for managing different project streams efficiently. Explore how Revlon:

  • Established the right project roles and responsibilities, as well as key performance indicators
  • Leveraged transactional usage data to refine its role requirements and minimize the need for extensive design workshops
  • Selected the right role design that allows for reduction of segregation-of-duties conflicts and excessive access and methods of accelerating role build, testing, and user mapping activities
  • Understood the importance of reviewing and updating its GRC ruleset both as part of the redesign process and on a periodic basis

Comments

No comments have been submitted on this article. 


Please log in to post a comment.

To learn more about subscription access to premium content, click here.