\ ANUUBHAAV SECURITY SOLUTIONS
...

SAP GRC Access Control



SAP Access Control is one of most widely used application and common amongst customers using SAP solutions.

We have been assisting our customers to leverage the benefits of Access Control application. Have lead projects comprising an implementation, application support, upgrade or migration in cloud.

We specialise in below components of SAP GRC Access Control.

Access Risks Analysis (ARA):
This component helps to maintain the access risks using rulesets. We have deep understanding about the core modules of SAP S4 HANA application. And assisted customer to standardised the risk library using SoD (Segregation of Duties) risks, Sensitive Access Risks (Critical Action and Permission). We also help clients to identify and setup custom risks for complete coverage from audit perspective.

_____*_Ad-hoc risk analysis at user and role level for audit preparation
_____*_Preventive control setup for access provisioning
_____*_Periodic SoD Review process setup and execution support

Mitigating Controls Library


Lack of control document poses significant risks from audit perspective and often highlighted as one of the key finding in an annual report. We extend our services to build the mitigating control library in line with financial risk and controls matrix so that it provides the wider coverage of risks across the business process.

_____*_Mitigating Control matrix
_____*_Definition of mitigating controls, frequency, monitor
_____*_Periodic Review of Mitigating Controls
_____*_Standard Operating Procedure for mitigating controls

User Access Management

Automated user lifecycle management is one of the most prominent requirements for any organisation using SAP solution and other applications. Below are the areas where we supported and offers the services to our clients.

_____*_Access request approval workflow setup
_____*_Optimisation of workflows to reduce the manual approval steps and increase the turnaround time
_____*_Integration of nonSAP applications for Manual Provisioning
_____*_Audit support for access provisioning

Emergency Access Management (Firefighter Access)

Well controlled emergency access is one of the main audit requirements and often considered one of the key controls during annual audit. We understand how critical it may be if one of the activities performed without having a controlled environment in production system

_____*_Firefighter ID, Controller and Monitor setup
_____*_Streamlining firefighter log review process
_____*_SLA’s setup for FF Log review
_____*_Segregation of business process specific emergency roles
_____*_Periodic log review and FF ID optimisation services

Business Role Management

Having a centralised repository of roles of various business applications help business to standardised and streamline the faster maintenance of roles. We

_____*_Harmonisation of business roles across the applications for access requests to provision the roles for multiple applications simultaneously
_____*_Role mining
_____*_Periodic role reviews per audit requirement

+44 7400 974618
+44 7400 974618




Contact Us

169 lode lane. Solihull. B91 2HW

©2024 All Rights Reserve. Anuubhaav Security, Developed and Designed by LDCB