"GOVERNANCE"

Access Risk Assessment - ARA

Emergency Access Management -EAM and Access Risk Management

Implementing ARM involves deploying work flows for access Request, user access review and SOD review.

Cloud3Concepts GRC specialists have mastered in deploying GRC in 3-tiered environment DEV, QAS and PRD. We implement SAP GRC Process Control version 10.1 replacing current IBM OpenPages solution with focus on identifying and implementing key elements of major GRC Process Controls, creating questionnaires and workflows and assist in data migration from OpenPages to Process Controls and automate and build automated controls.

We also evaluate the use of configurable automated business process controls available in the SAP ECC environment; implement selected process controls that complement the overall internal controls strategy and configure the GRC application to continuously monitor the operating effectiveness of such controls by building SOX reports.

We also implement Greenlight application and connectors to ECC, BW, BPC, PI, APO, Success Factors, and non-SAP systems non-SAP systems may include AD access managed applications and assist in the identification of standard Greenlight reports for SAP applications and assist with building custom reports for non-SAP systems.

Lastly we also assist our clients with project management, change management and system related documentation for end users of Access Control requesting access to SAP or a non-SAP system, manager and role owner approvals, requesting the removal of access to SAP or a non-SAP system, etc, and Process Control opening and completing a SOX test, attaching documentation to a SOX test, initiating quarterly reviews, etc.